Microsoft Windows Server 2016 vulnerabilities

4,167 known vulnerabilities affecting microsoft/windows_server_2016.

Total CVEs

4,167

CISA KEV

114

actively exploited

Public exploits

129

Exploited in wild

107

Severity breakdown

CRITICAL114HIGH2916MEDIUM1118LOW19

Vulnerabilities

Page 60 of 209

CVE-2024-20665MEDIUMCVSS 6.1≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-20665 [MEDIUM] CWE-693 BitLocker Security Feature Bypass Vulnerability BitLocker Security Feature Bypass Vulnerability BitLocker Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26227MEDIUMCVSS 6.6fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26227 [MEDIUM] CWE-416 CVE-2024-26227: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26183MEDIUMCVSS 6.5≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26183 [MEDIUM] CWE-476 Windows Kerberos Denial of Service Vulnerability Windows Kerberos Denial of Service Vulnerability Windows Kerberos Denial of Service Vulnerability

cvelistv5

CVE-2024-20669MEDIUMCVSS 6.7≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-20669 [MEDIUM] CWE-693 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26224MEDIUMCVSS 6.6fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26224 [MEDIUM] CWE-416 CVE-2024-26224: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26252MEDIUMCVSS 6.8fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26252 [MEDIUM] CWE-822 CVE-2024-26252: Windows rndismp6.sys Remote Code Execution Vulnerability Windows rndismp6.sys Remote Code Execution Vulnerability

nvd

CVE-2024-26221MEDIUMCVSS 6.6fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26221 [MEDIUM] CWE-416 CVE-2024-26221: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26234MEDIUMCVSS 6.7Exploited≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26234 [MEDIUM] CWE-284 Proxy Driver Spoofing Vulnerability Proxy Driver Spoofing Vulnerability Proxy Driver Spoofing Vulnerability

cvelistv5

CVE-2024-28898MEDIUMCVSS 6.3≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-28898 [MEDIUM] CWE-121 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-28921MEDIUMCVSS 6.7≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-28921 [MEDIUM] CWE-693 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-28901MEDIUMCVSS 5.5fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-28901 [MEDIUM] CWE-126 CVE-2024-28901: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-29056MEDIUMCVSS 4.3≤ 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-29056 [MEDIUM] CWE-327 CVE-2024-29056: Windows Authentication Elevation of Privilege Vulnerability Windows Authentication Elevation of Privilege Vulnerability

nvd

CVE-2024-26253MEDIUMCVSS 6.8fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26253 [MEDIUM] CWE-20 CVE-2024-26253: Windows rndismp6.sys Remote Code Execution Vulnerability Windows rndismp6.sys Remote Code Execution Vulnerability

nvd

CVE-2024-28903MEDIUMCVSS 6.7≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-28903 [MEDIUM] CWE-693 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26171MEDIUMCVSS 6.7≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26171 [MEDIUM] CWE-190 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26223MEDIUMCVSS 6.6fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.68972024-04-09

CVE-2024-26223 [MEDIUM] CWE-416 CVE-2024-26223: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26217LOWCVSS 3.3fixed in 10.0.14393.6981≥ 10.0.14393.0, < 10.0.14393.69812024-04-09

CVE-2024-26217 [LOW] CWE-125 CVE-2024-26217: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-21432HIGHCVSS 7.0fixed in 10.0.14393.6796≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-21432 [HIGH] CWE-59 CVE-2024-21432: Windows Update Stack Elevation of Privilege Vulnerability Windows Update Stack Elevation of Privilege Vulnerability

nvd

CVE-2024-26173HIGHCVSS 7.8fixed in 10.0.14393.6796≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-26173 [HIGH] CWE-20 CVE-2024-26173: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-26169HIGHCVSS 7.8KEV≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-26169 [HIGH] CWE-269 CVE-2024-26169: Windows Error Reporting Service Elevation of Privilege Vulnerability Windows Error Reporting Service Elevation of Privilege Vulnerability

nvd

← Previous60 / 209Next →