Microsoft Windows Server 2008 Service Pack 2 vulnerabilities

1,672 known vulnerabilities affecting microsoft/windows_server_2008_service_pack_2.

Total CVEs

1,672

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL68HIGH1214MEDIUM387LOW3

Vulnerabilities

Page 17 of 84

CVE-2025-21250HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21250 [HIGH] CWE-122 CVE-2025-21250: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21389HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21389 [HIGH] CWE-400 CVE-2025-21389: Uncontrolled resource consumption in Windows Universal Plug and Play (UPnP) Device Host allows an un Uncontrolled resource consumption in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to deny service over a network.

cvelistv5nvd

CVE-2025-21411HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21411 [HIGH] CWE-122 CVE-2025-21411: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21338HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21338 [HIGH] CWE-190 GDI+ Remote Code Execution Vulnerability GDI+ Remote Code Execution Vulnerability GDI+ Remote Code Execution Vulnerability

cvelistv5

CVE-2025-21237HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21237 [HIGH] CWE-122 CVE-2025-21237: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21302HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21302 [HIGH] CWE-122 CVE-2025-21302: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21294HIGHCVSS 8.1≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21294 [HIGH] CWE-591 CVE-2025-21294: Microsoft Digest Authentication Remote Code Execution Vulnerability Microsoft Digest Authentication Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21332HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21332 [HIGH] CWE-41 CVE-2025-21332: MapUrlToZone Security Feature Bypass Vulnerability MapUrlToZone Security Feature Bypass Vulnerability

cvelistv5nvd

CVE-2025-21233HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21233 [HIGH] CWE-122 CVE-2025-21233: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21305HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21305 [HIGH] CWE-122 CVE-2025-21305: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21252HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21252 [HIGH] CWE-122 CVE-2025-21252: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21306HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21306 [HIGH] CWE-122 CVE-2025-21306: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21266HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21266 [HIGH] CWE-122 CVE-2025-21266: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21236HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21236 [HIGH] CWE-122 CVE-2025-21236: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21230HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21230 [HIGH] CWE-20 CVE-2025-21230: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

cvelistv5nvd

CVE-2025-21331HIGHCVSS 7.3≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21331 [HIGH] CWE-59 CVE-2025-21331: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2025-21277HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21277 [HIGH] CWE-126 CVE-2025-21277: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

cvelistv5nvd

CVE-2025-21276HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21276 [HIGH] CWE-191 CVE-2025-21276: Windows MapUrlToZone Denial of Service Vulnerability Windows MapUrlToZone Denial of Service Vulnerability

cvelistv5nvd

CVE-2025-21238HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21238 [HIGH] CWE-122 CVE-2025-21238: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2025-21240HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.230702025-01-14

CVE-2025-21240 [HIGH] CWE-122 CVE-2025-21240: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

cvelistv5nvd

← Previous17 / 84Next →