Microsoft Windows Server 2008 Service Pack 2 vulnerabilities

1,672 known vulnerabilities affecting microsoft/windows_server_2008_service_pack_2.

Total CVEs

1,672

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL68HIGH1214MEDIUM387LOW3

Vulnerabilities

Page 44 of 84

CVE-2023-28220HIGHCVSS 8.1≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28220 [HIGH] CWE-591 CVE-2023-28220: Layer 2 Tunneling Protocol Remote Code Execution Vulnerability Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

nvd

CVE-2023-28272HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28272 [HIGH] CWE-191 CVE-2023-28272: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2023-28231HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28231 [HIGH] CWE-122 CVE-2023-28231: DHCP Server Service Remote Code Execution Vulnerability DHCP Server Service Remote Code Execution Vulnerability

nvd

CVE-2023-28244HIGHCVSS 8.1≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28244 [HIGH] CWE-327 CVE-2023-28244: Windows Kerberos Elevation of Privilege Vulnerability Windows Kerberos Elevation of Privilege Vulnerability

nvd

CVE-2023-24912HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-24912 [HIGH] CWE-122 CVE-2023-24912: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

nvd

CVE-2023-28229HIGHCVSS 7.0KEV≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28229 [HIGH] CWE-591 CVE-2023-28229: Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

nvd

CVE-2023-28218HIGHCVSS 7.0≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28218 [HIGH] CWE-122 CVE-2023-28218: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

nvd

CVE-2023-28222HIGHCVSS 7.1≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28222 [HIGH] CWE-59 CVE-2023-28222: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2023-28275HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28275 [HIGH] CWE-122 CVE-2023-28275: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-28216HIGHCVSS 7.0≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28216 [HIGH] CVE-2023-28216: Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

nvd

CVE-2023-28219HIGHCVSS 8.1≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28219 [HIGH] CWE-591 CVE-2023-28219: Layer 2 Tunneling Protocol Remote Code Execution Vulnerability Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

nvd

CVE-2023-21727HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-21727 [HIGH] CWE-122 CVE-2023-21727: Remote Procedure Call Runtime Remote Code Execution Vulnerability Remote Procedure Call Runtime Remote Code Execution Vulnerability

nvd

CVE-2023-28240HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28240 [HIGH] CWE-122 CVE-2023-28240: Windows Network Load Balancing Remote Code Execution Vulnerability Windows Network Load Balancing Remote Code Execution Vulnerability

nvd

CVE-2023-28241HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28241 [HIGH] CVE-2023-28241: Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability

nvd

CVE-2023-28268HIGHCVSS 8.1≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28268 [HIGH] Netlogon RPC Elevation of Privilege Vulnerability Netlogon RPC Elevation of Privilege Vulnerability Netlogon RPC Elevation of Privilege Vulnerability

cvelistv5

CVE-2023-28276MEDIUMCVSS 4.4≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28276 [MEDIUM] CVE-2023-28276: Windows Group Policy Security Feature Bypass Vulnerability Windows Group Policy Security Feature Bypass Vulnerability

nvd

CVE-2023-21729MEDIUMCVSS 5.3≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-21729 [MEDIUM] CWE-125 CVE-2023-21729: Remote Procedure Call Runtime Information Disclosure Vulnerability Remote Procedure Call Runtime Information Disclosure Vulnerability

nvd

CVE-2023-28308MEDIUMCVSS 6.6≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28308 [MEDIUM] CWE-416 CVE-2023-28308: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2023-28278MEDIUMCVSS 6.6≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28278 [MEDIUM] CWE-591 CVE-2023-28278: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2023-28271MEDIUMCVSS 5.5≥ 6.0.6003.0, < 6.0.6003.220152023-04-11

CVE-2023-28271 [MEDIUM] CWE-200 CVE-2023-28271: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

← Previous44 / 84Next →