Microsoft Windows Server 2016 vulnerabilities
4,167 known vulnerabilities affecting microsoft/windows_server_2016.
Total CVEs
4,167
CISA KEV
114
actively exploited
Public exploits
129
Exploited in wild
107
Severity breakdown
CRITICAL114HIGH2916MEDIUM1118LOW19
Vulnerabilities
Page 46 of 209
CVE-2024-43560HIGHCVSS 7.8fixed in 10.0.14393.7428≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-43560 [HIGH] CWE-122 CVE-2024-43560: Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability
Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability
nvd
CVE-2024-43534MEDIUMCVSS 6.5fixed in 10.0.14393.7428≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-43534 [MEDIUM] CWE-125 CVE-2024-43534: Windows Graphics Component Information Disclosure Vulnerability
Windows Graphics Component Information Disclosure Vulnerability
nvd
CVE-2024-43573MEDIUMCVSS 6.5KEV≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-43573 [MEDIUM] CWE-79 Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
cvelistv5
CVE-2024-43520MEDIUMCVSS 5.0≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-43520 [MEDIUM] CWE-476 Windows Kernel Denial of Service Vulnerability
Windows Kernel Denial of Service Vulnerability
Windows Kernel Denial of Service Vulnerability
cvelistv5
CVE-2024-37976MEDIUMCVSS 6.7fixed in 10.0.14393.7428≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-37976 [MEDIUM] CWE-190 CVE-2024-37976: Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
nvd
CVE-2024-37983MEDIUMCVSS 6.7fixed in 10.0.14393.7428≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-37983 [MEDIUM] CWE-822 CVE-2024-37983: Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
nvd
CVE-2024-43547MEDIUMCVSS 5.9fixed in 10.0.14393.7428≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-43547 [MEDIUM] CWE-325 CVE-2024-43547: Windows Kerberos Information Disclosure Vulnerability
Windows Kerberos Information Disclosure Vulnerability
nvd
CVE-2024-43554MEDIUMCVSS 5.5fixed in 10.0.14393.7428≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-43554 [MEDIUM] CWE-212 CVE-2024-43554: Windows Kernel-Mode Driver Information Disclosure Vulnerability
Windows Kernel-Mode Driver Information Disclosure Vulnerability
nvd
CVE-2024-43513MEDIUMCVSS 6.4≥ 10.0.14393.0, < 10.0.14393.74282024-10-08
CVE-2024-43513 [MEDIUM] CWE-693 BitLocker Security Feature Bypass Vulnerability
BitLocker Security Feature Bypass Vulnerability
BitLocker Security Feature Bypass Vulnerability
cvelistv5
CVE-2024-6769HIGHCVSS 8.4v10.0.02024-09-26
CVE-2024-6769 [HIGH] CWE-426 CVE-2024-6769: A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Micro
A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process to a high integrity process without the intervention of a UAC prompt.
nvd
CVE-2024-43455CRITICALCVSS 9.8fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-43455 [CRITICAL] CWE-20 CVE-2024-43455: Windows Remote Desktop Licensing Service Spoofing Vulnerability
Windows Remote Desktop Licensing Service Spoofing Vulnerability
nvd
CVE-2024-38240CRITICALCVSS 9.8fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38240 [CRITICAL] CWE-125 CVE-2024-38240: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
nvd
CVE-2024-38233HIGHCVSS 7.5fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38233 [HIGH] CWE-476 CVE-2024-38233: Windows Networking Denial of Service Vulnerability
Windows Networking Denial of Service Vulnerability
nvd
CVE-2024-38245HIGHCVSS 7.8fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38245 [HIGH] CWE-20 CVE-2024-38245: Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
nvd
CVE-2024-38232HIGHCVSS 7.5fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38232 [HIGH] CWE-476 CVE-2024-38232: Windows Networking Denial of Service Vulnerability
Windows Networking Denial of Service Vulnerability
nvd
CVE-2024-38249HIGHCVSS 7.8fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38249 [HIGH] CWE-416 CVE-2024-38249: Windows Graphics Component Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
nvd
CVE-2024-43461HIGHCVSS 8.8KEV≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-43461 [HIGH] CWE-451 Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
Windows MSHTML Platform Spoofing Vulnerability
cvelistv5
CVE-2024-38244HIGHCVSS 7.8fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38244 [HIGH] CWE-20 CVE-2024-38244: Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
nvd
CVE-2024-38250HIGHCVSS 7.8fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38250 [HIGH] CWE-126 CVE-2024-38250: Windows Graphics Component Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
nvd
CVE-2024-38241HIGHCVSS 7.8fixed in 10.0.14393.7336≥ 10.0.14393.0, < 10.0.14393.73362024-09-10
CVE-2024-38241 [HIGH] CWE-20 CVE-2024-38241: Kernel Streaming Service Driver Elevation of Privilege Vulnerability
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
nvd