Microsoft Windows Server 2008 Service Pack 2 vulnerabilities

1,672 known vulnerabilities affecting microsoft/windows_server_2008_service_pack_2.

Total CVEs

1,672

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL68HIGH1214MEDIUM387LOW3

Vulnerabilities

Page 46 of 84

CVE-2023-23385HIGHCVSS 7.0≥ 6.0.6003.0, < 6.0.6003.219662023-03-14

CVE-2023-23385 [HIGH] CWE-190 CVE-2023-23385: Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Privilege Vulnerability Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Privilege Vulnerability

nvd

CVE-2023-24869HIGHCVSS 8.1≥ 6.0.6003.0, < 6.0.6003.219662023-03-14

CVE-2023-24869 [HIGH] CWE-190 CVE-2023-24869: Remote Procedure Call Runtime Remote Code Execution Vulnerability Remote Procedure Call Runtime Remote Code Execution Vulnerability

nvd

CVE-2023-23410HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.219662023-03-14

CVE-2023-23410 [HIGH] CWE-190 CVE-2023-23410: Windows HTTP.sys Elevation of Privilege Vulnerability Windows HTTP.sys Elevation of Privilege Vulnerability

nvd

CVE-2023-24862MEDIUMCVSS 5.5≥ 6.0.6003.0, < 6.0.6003.219662023-03-14

CVE-2023-24862 [MEDIUM] CWE-125 CVE-2023-24862: Windows Secure Channel Denial of Service Vulnerability Windows Secure Channel Denial of Service Vulnerability

nvd

CVE-2023-23394MEDIUMCVSS 5.5≥ 6.0.6003.0, < 6.0.6003.219662023-03-14

CVE-2023-23394 [MEDIUM] CWE-822 CVE-2023-23394: Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability

nvd

CVE-2023-23409MEDIUMCVSS 5.5≥ 6.0.6003.0, < 6.0.6003.219662023-03-14

CVE-2023-23409 [MEDIUM] CWE-20 CVE-2023-23409: Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability

nvd

CVE-2023-21803CRITICALCVSS 9.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21803 [CRITICAL] CWE-190 CVE-2023-21803: Windows iSCSI Discovery Service Remote Code Execution Vulnerability Windows iSCSI Discovery Service Remote Code Execution Vulnerability

nvd

CVE-2023-21692CRITICALCVSS 9.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21692 [CRITICAL] CWE-122 CVE-2023-21692: Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

nvd

CVE-2023-21800HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21800 [HIGH] CWE-73 CVE-2023-21800: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability

nvd

CVE-2023-21816HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21816 [HIGH] CWE-20 CVE-2023-21816: Windows Active Directory Domain Services API Denial of Service Vulnerability Windows Active Directory Domain Services API Denial of Service Vulnerability

nvd

CVE-2023-21823HIGHCVSS 7.8KEV≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21823 [HIGH] CWE-190 CVE-2023-21823: Windows Graphics Component Remote Code Execution Vulnerability Windows Graphics Component Remote Code Execution Vulnerability

nvd

CVE-2023-21817HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21817 [HIGH] CWE-287 CVE-2023-21817: Windows Kerberos Elevation of Privilege Vulnerability Windows Kerberos Elevation of Privilege Vulnerability

nvd

CVE-2023-21691HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21691 [HIGH] CWE-125 CVE-2023-21691: Microsoft Protected Extensible Authentication Protocol (PEAP) Information Disclosure Vulnerability Microsoft Protected Extensible Authentication Protocol (PEAP) Information Disclosure Vulnerability

nvd

CVE-2023-21802HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21802 [HIGH] CWE-190 Windows Media Remote Code Execution Vulnerability Windows Media Remote Code Execution Vulnerability Windows Media Remote Code Execution Vulnerability

cvelistv5

CVE-2023-21797HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21797 [HIGH] CWE-190 CVE-2023-21797: Microsoft ODBC Driver Remote Code Execution Vulnerability Microsoft ODBC Driver Remote Code Execution Vulnerability

nvd

CVE-2023-21701HIGHCVSS 7.5≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21701 [HIGH] CWE-126 CVE-2023-21701: Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability

nvd

CVE-2023-21685HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21685 [HIGH] CWE-20 CVE-2023-21685: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-21805HIGHCVSS 7.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21805 [HIGH] CWE-77 CVE-2023-21805: Windows MSHTML Platform Remote Code Execution Vulnerability Windows MSHTML Platform Remote Code Execution Vulnerability

nvd

CVE-2023-21684HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21684 [HIGH] CWE-191 CVE-2023-21684: Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

nvd

CVE-2023-21695HIGHCVSS 8.8≥ 6.0.6003.0, < 6.0.6003.219152023-02-14

CVE-2023-21695 [HIGH] CWE-122 CVE-2023-21695: Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

nvd

← Previous46 / 84Next →