Microsoft Windows Server 2016 vulnerabilities

4,167 known vulnerabilities affecting microsoft/windows_server_2016.

Total CVEs

4,167

CISA KEV

114

actively exploited

Public exploits

129

Exploited in wild

107

Severity breakdown

CRITICAL114HIGH2916MEDIUM1118LOW19

Vulnerabilities

Page 57 of 209

CVE-2024-30011MEDIUMCVSS 6.5≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30011 [MEDIUM] CWE-191 Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability

cvelistv5

CVE-2024-30039MEDIUMCVSS 5.5fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30039 [MEDIUM] CWE-126 CVE-2024-30039: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-30019MEDIUMCVSS 6.5fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30019 [MEDIUM] CWE-400 CVE-2024-30019: DHCP Server Service Denial of Service Vulnerability DHCP Server Service Denial of Service Vulnerability

nvd

CVE-2024-30036MEDIUMCVSS 6.5fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30036 [MEDIUM] CWE-41 CVE-2024-30036: Windows Deployment Services Information Disclosure Vulnerability Windows Deployment Services Information Disclosure Vulnerability

nvd

CVE-2024-30016MEDIUMCVSS 5.5fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30016 [MEDIUM] CWE-125 CVE-2024-30016: Windows Cryptographic Services Information Disclosure Vulnerability Windows Cryptographic Services Information Disclosure Vulnerability

nvd

CVE-2024-30037MEDIUMCVSS 5.5fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30037 [MEDIUM] CWE-125 CVE-2024-30037: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-30008MEDIUMCVSS 5.5fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30008 [MEDIUM] CWE-191 CVE-2024-30008: Windows DWM Core Library Information Disclosure Vulnerability Windows DWM Core Library Information Disclosure Vulnerability

nvd

CVE-2024-30050MEDIUMCVSS 5.4fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-05-14

CVE-2024-30050 [MEDIUM] CWE-693 CVE-2024-30050: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability

nvd

CVE-2024-26180HIGHCVSS 8.0≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26180 [HIGH] CWE-121 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26189HIGHCVSS 8.0≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26189 [HIGH] CWE-20 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26210HIGHCVSS 8.8fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26210 [HIGH] CWE-122 CVE-2024-26210: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-26212HIGHCVSS 7.5fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26212 [HIGH] CWE-400 CVE-2024-26212: DHCP Server Service Denial of Service Vulnerability DHCP Server Service Denial of Service Vulnerability

nvd

CVE-2024-28896HIGHCVSS 7.5≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-28896 [HIGH] CWE-122 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26215HIGHCVSS 7.5fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26215 [HIGH] CWE-400 CVE-2024-26215: DHCP Server Service Denial of Service Vulnerability DHCP Server Service Denial of Service Vulnerability

nvd

CVE-2024-29061HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-29061 [HIGH] CWE-121 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-20693HIGHCVSS 7.8fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-20693 [HIGH] CWE-426 CVE-2024-20693: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-26208HIGHCVSS 7.2fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26208 [HIGH] CWE-191 CVE-2024-26208: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

nvd

CVE-2024-26195HIGHCVSS 7.2fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26195 [HIGH] CWE-122 CVE-2024-26195: DHCP Server Service Remote Code Execution Vulnerability DHCP Server Service Remote Code Execution Vulnerability

nvd

CVE-2024-26228HIGHCVSS 7.8fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26228 [HIGH] CWE-310 CVE-2024-26228: Windows Cryptographic Services Security Feature Bypass Vulnerability Windows Cryptographic Services Security Feature Bypass Vulnerability

nvd

CVE-2024-26214HIGHCVSS 8.8fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26214 [HIGH] CWE-122 CVE-2024-26214: Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability

nvd

← Previous57 / 209Next →