Microsoft Windows Server 2016 vulnerabilities
4,167 known vulnerabilities affecting microsoft/windows_server_2016.
Total CVEs
4,167
CISA KEV
115
actively exploited
Public exploits
129
Exploited in wild
107
Severity breakdown
CRITICAL114HIGH2916MEDIUM1118LOW19
Vulnerabilities
Page 123 of 209
CVE-2021-34537HIGHCVSS 8.0v20h2v2004+1 more2021-08-12
CVE-2021-34537 [HIGH] CWE-269 CVE-2021-34537: Windows Bluetooth Driver Elevation of Privilege Vulnerability
Windows Bluetooth Driver Elevation of Privilege Vulnerability
nvd
CVE-2021-36942HIGHCVSS 7.5KEVPoC≥ 10.0.0, < 10.0.14393.45832021-08-12
CVE-2021-36942 [HIGH] Windows LSA Spoofing Vulnerability
Windows LSA Spoofing Vulnerability
Windows LSA Spoofing Vulnerability
cvelistv5
CVE-2021-34536HIGHCVSS 7.8v20h2v2004+1 more2021-08-12
CVE-2021-34536 [HIGH] CWE-190 CVE-2021-34536: Storage Spaces Controller Elevation of Privilege Vulnerability
Storage Spaces Controller Elevation of Privilege Vulnerability
nvd
CVE-2021-34483HIGHCVSS 7.8v20h2v2004+1 more2021-08-12
CVE-2021-34483 [HIGH] CWE-269 CVE-2021-34483: Windows Print Spooler Elevation of Privilege Vulnerability
Windows Print Spooler Elevation of Privilege Vulnerability
nvd
CVE-2021-36932HIGHCVSS 7.5v20h2v2004+1 more2021-08-12
CVE-2021-36932 [HIGH] CVE-2021-36932: Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability
Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability
nvd
CVE-2021-26431HIGHCVSS 7.8v20h2v20042021-08-12
CVE-2021-26431 [HIGH] CVE-2021-26431: Windows Recovery Environment Agent Elevation of Privilege Vulnerability
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
nvd
CVE-2021-36958HIGHCVSS 7.8≥ 10.0.0, < 10.0.14393.46512021-08-12
CVE-2021-36958 [HIGH] CVE-2021-36958: <p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly pe
A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
nvd
CVE-2021-34487HIGHCVSS 7.8v20h2v2004+1 more2021-08-12
CVE-2021-34487 [HIGH] CWE-269 CVE-2021-34487: Windows Event Tracing Elevation of Privilege Vulnerability
Windows Event Tracing Elevation of Privilege Vulnerability
nvd
CVE-2021-26433HIGHCVSS 7.5v20h2v2004+1 more2021-08-12
CVE-2021-26433 [HIGH] CVE-2021-26433: Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability
Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability
nvd
CVE-2021-36938MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.14393.45832021-08-12
CVE-2021-36938 [MEDIUM] CVE-2021-36938: Windows Cryptographic Primitives Library Information Disclosure Vulnerability
Windows Cryptographic Primitives Library Information Disclosure Vulnerability
nvd
CVE-2021-34480MEDIUMCVSS 6.8≥ 10.0.0, < 10.0.14393.45832021-08-12
CVE-2021-34480 [MEDIUM] Scripting Engine Memory Corruption Vulnerability
Scripting Engine Memory Corruption Vulnerability
Scripting Engine Memory Corruption Vulnerability
cvelistv5
CVE-2021-34450CRITICALCVSS 9.9v20h2v20042021-07-16
CVE-2021-34450 [CRITICAL] CVE-2021-34450: Windows Hyper-V Remote Code Execution Vulnerability
Windows Hyper-V Remote Code Execution Vulnerability
nvd
CVE-2021-34458CRITICALCVSS 9.9v20h2v2004+1 more2021-07-16
CVE-2021-34458 [CRITICAL] CVE-2021-34458: Windows Kernel Remote Code Execution Vulnerability
Windows Kernel Remote Code Execution Vulnerability
nvd
CVE-2021-34481CRITICALCVSS 9.8v2004≥ 10.0.0, < 10.0.14393.45832021-07-16
CVE-2021-34481 [CRITICAL] CWE-269 CVE-2021-34481: <p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly pe
A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user r
nvd
CVE-2021-34441HIGHCVSS 7.8v20h2v2004+1 more2021-07-16
CVE-2021-34441 [HIGH] CVE-2021-34441: Microsoft Windows Media Foundation Remote Code Execution Vulnerability
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
nvd
CVE-2021-34461HIGHCVSS 7.8v20h2v20042021-07-16
CVE-2021-34461 [HIGH] CWE-269 CVE-2021-34461: Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability
Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability
nvd
CVE-2021-34460HIGHCVSS 7.8v20h2v2004+1 more2021-07-16
CVE-2021-34460 [HIGH] CWE-269 CVE-2021-34460: Storage Spaces Controller Elevation of Privilege Vulnerability
Storage Spaces Controller Elevation of Privilege Vulnerability
nvd
CVE-2021-34447HIGHCVSS 8.8≥ 10.0.0, < 10.0.14393.45302021-07-16
CVE-2021-34447 [HIGH] CVE-2021-34447: Windows MSHTML Platform Remote Code Execution Vulnerability
Windows MSHTML Platform Remote Code Execution Vulnerability
nvd
CVE-2021-34459HIGHCVSS 7.8v20h2v2004+1 more2021-07-16
CVE-2021-34459 [HIGH] CWE-269 CVE-2021-34459: Windows AppContainer Elevation Of Privilege Vulnerability
Windows AppContainer Elevation Of Privilege Vulnerability
nvd
CVE-2021-34442HIGHCVSS 7.5v20h2v2004+1 more2021-07-16
CVE-2021-34442 [HIGH] CVE-2021-34442: Windows DNS Server Remote Code Execution Vulnerability
Windows DNS Server Remote Code Execution Vulnerability
nvd