Microsoft Windows Server 2016 vulnerabilities

4,167 known vulnerabilities affecting microsoft/windows_server_2016.

Total CVEs

4,167

CISA KEV

114

actively exploited

Public exploits

129

Exploited in wild

107

Severity breakdown

CRITICAL114HIGH2916MEDIUM1118LOW19

Vulnerabilities

Page 39 of 209

CVE-2025-21258MEDIUMCVSS 6.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21258 [MEDIUM] CWE-125 CVE-2025-21258: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21232MEDIUMCVSS 6.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21232 [MEDIUM] CWE-125 CVE-2025-21232: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21255MEDIUMCVSS 6.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21255 [MEDIUM] CWE-125 CVE-2025-21255: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21324MEDIUMCVSS 6.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21324 [MEDIUM] CWE-125 CVE-2025-21324: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21318MEDIUMCVSS 5.5fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21318 [MEDIUM] CWE-532 CVE-2025-21318: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

CVE-2025-21323MEDIUMCVSS 5.5fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21323 [MEDIUM] CWE-532 CVE-2025-21323: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

CVE-2025-21308MEDIUMCVSS 6.5≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21308 [MEDIUM] CWE-200 Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability

cvelistv5

CVE-2025-21327MEDIUMCVSS 6.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21327 [MEDIUM] CWE-125 CVE-2025-21327: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21278MEDIUMCVSS 5.5fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21278 [MEDIUM] CWE-362 CVE-2025-21278: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

nvd

CVE-2025-21329MEDIUMCVSS 4.3fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21329 [MEDIUM] CWE-41 CVE-2025-21329: MapUrlToZone Security Feature Bypass Vulnerability MapUrlToZone Security Feature Bypass Vulnerability

nvd

CVE-2025-21257MEDIUMCVSS 5.5fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21257 [MEDIUM] CWE-125 CVE-2025-21257: Windows WLAN AutoConfig Service Information Disclosure Vulnerability Windows WLAN AutoConfig Service Information Disclosure Vulnerability

nvd

CVE-2025-21336MEDIUMCVSS 5.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21336 [MEDIUM] CWE-203 CVE-2025-21336: Windows Cryptographic Information Disclosure Vulnerability Windows Cryptographic Information Disclosure Vulnerability

nvd

CVE-2025-21319MEDIUMCVSS 5.5fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21319 [MEDIUM] CWE-532 CVE-2025-21319: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

CVE-2025-21227MEDIUMCVSS 6.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21227 [MEDIUM] CWE-125 CVE-2025-21227: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21272MEDIUMCVSS 6.5fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21272 [MEDIUM] CWE-908 CVE-2025-21272: Windows COM Server Information Disclosure Vulnerability Windows COM Server Information Disclosure Vulnerability

nvd

CVE-2025-21225MEDIUMCVSS 5.9fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21225 [MEDIUM] CWE-843 CVE-2025-21225: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

nvd

CVE-2025-21229MEDIUMCVSS 6.6fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21229 [MEDIUM] CWE-125 CVE-2025-21229: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21242MEDIUMCVSS 5.9fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21242 [MEDIUM] CWE-200 CVE-2025-21242: Windows Kerberos Information Disclosure Vulnerability Windows Kerberos Information Disclosure Vulnerability

nvd

CVE-2025-21215MEDIUMCVSS 4.6≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21215 [MEDIUM] CWE-125 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2025-21269MEDIUMCVSS 4.3fixed in 10.0.14393.7699≥ 10.0.14393.0, < 10.0.14393.76992025-01-14

CVE-2025-21269 [MEDIUM] CWE-41 CVE-2025-21269: Windows HTML Platforms Security Feature Bypass Vulnerability Windows HTML Platforms Security Feature Bypass Vulnerability

nvd

← Previous39 / 209Next →