Microsoft Windows Server 2016 vulnerabilities

4,167 known vulnerabilities affecting microsoft/windows_server_2016.

Total CVEs

4,167

CISA KEV

114

actively exploited

Public exploits

129

Exploited in wild

107

Severity breakdown

CRITICAL114HIGH2916MEDIUM1118LOW19

Vulnerabilities

Page 53 of 209

CVE-2024-38068HIGHCVSS 7.5fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38068 [HIGH] CWE-400 CVE-2024-38068: Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

nvd

CVE-2024-38073HIGHCVSS 7.5fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38073 [HIGH] CWE-125 CVE-2024-38073: Windows Remote Desktop Licensing Service Denial of Service Vulnerability Windows Remote Desktop Licensing Service Denial of Service Vulnerability

nvd

CVE-2024-37975HIGHCVSS 8.0≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-37975 [HIGH] CWE-191 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-38043HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38043 [HIGH] CWE-20 PowerShell Elevation of Privilege Vulnerability PowerShell Elevation of Privilege Vulnerability PowerShell Elevation of Privilege Vulnerability

cvelistv5

CVE-2024-38072HIGHCVSS 7.5fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38072 [HIGH] CWE-476 CVE-2024-38072: Windows Remote Desktop Licensing Service Denial of Service Vulnerability Windows Remote Desktop Licensing Service Denial of Service Vulnerability

nvd

CVE-2024-38015HIGHCVSS 7.5fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38015 [HIGH] CWE-400 CVE-2024-38015: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

nvd

CVE-2024-37988HIGHCVSS 8.0≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-37988 [HIGH] CWE-130 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-37971HIGHCVSS 8.0≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-37971 [HIGH] CWE-121 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-38085HIGHCVSS 7.8fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38085 [HIGH] CWE-416 CVE-2024-38085: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

nvd

CVE-2024-38047HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38047 [HIGH] CWE-20 PowerShell Elevation of Privilege Vulnerability PowerShell Elevation of Privilege Vulnerability PowerShell Elevation of Privilege Vulnerability

cvelistv5

CVE-2024-38050HIGHCVSS 7.8fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38050 [HIGH] CWE-191 CVE-2024-38050: Windows Workstation Service Elevation of Privilege Vulnerability Windows Workstation Service Elevation of Privilege Vulnerability

nvd

CVE-2024-38112HIGHCVSS 7.5KEV≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38112 [HIGH] CWE-451 Windows MSHTML Platform Spoofing Vulnerability Windows MSHTML Platform Spoofing Vulnerability Windows MSHTML Platform Spoofing Vulnerability

cvelistv5

CVE-2024-38070HIGHCVSS 7.8fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38070 [HIGH] CWE-693 CVE-2024-38070: Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability

nvd

CVE-2024-38011HIGHCVSS 8.0≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38011 [HIGH] CWE-130 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-30079HIGHCVSS 7.8fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-30079 [HIGH] CWE-126 CVE-2024-30079: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

nvd

CVE-2024-38067HIGHCVSS 7.5fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38067 [HIGH] CWE-400 CVE-2024-38067: Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

nvd

CVE-2024-38066HIGHCVSS 7.8fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38066 [HIGH] CWE-416 CVE-2024-38066: Windows Win32k Elevation of Privilege Vulnerability Windows Win32k Elevation of Privilege Vulnerability

nvd

CVE-2024-38041MEDIUMCVSS 5.5fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38041 [MEDIUM] CWE-200 CVE-2024-38041: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

nvd

CVE-2024-38013MEDIUMCVSS 6.7fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38013 [MEDIUM] CWE-59 CVE-2024-38013: Microsoft Windows Server Backup Elevation of Privilege Vulnerability Microsoft Windows Server Backup Elevation of Privilege Vulnerability

nvd

CVE-2024-38105MEDIUMCVSS 6.5fixed in 10.0.14393.7159≥ 10.0.14393.0, < 10.0.14393.71592024-07-09

CVE-2024-38105 [MEDIUM] CWE-20 CVE-2024-38105: Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

nvd

← Previous53 / 209Next →