Microsoft Windows Server 2016 vulnerabilities

4,167 known vulnerabilities affecting microsoft/windows_server_2016.

Total CVEs

4,167

CISA KEV

114

actively exploited

Public exploits

129

Exploited in wild

107

Severity breakdown

CRITICAL114HIGH2916MEDIUM1118LOW19

Vulnerabilities

Page 62 of 209

CVE-2024-21440HIGHCVSS 8.8fixed in 10.0.14393.6897≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-21440 [HIGH] CWE-197 CVE-2024-21440: Microsoft ODBC Driver Remote Code Execution Vulnerability Microsoft ODBC Driver Remote Code Execution Vulnerability

nvd

CVE-2024-21408MEDIUMCVSS 5.5≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-21408 [MEDIUM] CWE-835 Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability

cvelistv5

CVE-2024-26197MEDIUMCVSS 6.5fixed in 10.0.14393.6796≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-26197 [MEDIUM] CWE-20 CVE-2024-26197: Windows Standards-Based Storage Management Service Denial of Service Vulnerability Windows Standards-Based Storage Management Service Denial of Service Vulnerability

nvd

CVE-2024-21429MEDIUMCVSS 6.8fixed in 10.0.14393.6796≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-21429 [MEDIUM] CWE-197 CVE-2024-21429: Windows USB Hub Driver Remote Code Execution Vulnerability Windows USB Hub Driver Remote Code Execution Vulnerability

nvd

CVE-2024-21430MEDIUMCVSS 6.4fixed in 10.0.14393.6796≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-21430 [MEDIUM] CWE-125 CVE-2024-21430: Windows USB Attached SCSI (UAS) Protocol Remote Code Execution Vulnerability Windows USB Attached SCSI (UAS) Protocol Remote Code Execution Vulnerability

nvd

CVE-2024-26177MEDIUMCVSS 5.5fixed in 10.0.14393.6796≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-26177 [MEDIUM] CWE-200 CVE-2024-26177: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

nvd

CVE-2024-26174MEDIUMCVSS 5.5fixed in 10.0.14393.6796≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-26174 [MEDIUM] CWE-125 CVE-2024-26174: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

nvd

CVE-2024-26181MEDIUMCVSS 5.5≥ 10.0.14393.0, < 10.0.14393.67962024-03-12

CVE-2024-26181 [MEDIUM] CWE-20 Windows Kernel Denial of Service Vulnerability Windows Kernel Denial of Service Vulnerability Windows Kernel Denial of Service Vulnerability

cvelistv5

CVE-2024-21347HIGHCVSS 7.5fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21347 [HIGH] CWE-122 CVE-2024-21347: Microsoft ODBC Driver Remote Code Execution Vulnerability Microsoft ODBC Driver Remote Code Execution Vulnerability

nvd

CVE-2024-21370HIGHCVSS 8.8fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21370 [HIGH] CWE-122 CVE-2024-21370: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21350HIGHCVSS 8.8fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21350 [HIGH] CWE-190 CVE-2024-21350: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21366HIGHCVSS 8.8fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21366 [HIGH] CWE-122 CVE-2024-21366: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21405HIGHCVSS 7.0fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21405 [HIGH] CWE-591 CVE-2024-21405: Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability

nvd

CVE-2024-21343HIGHCVSS 7.5fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21343 [HIGH] CWE-125 CVE-2024-21343: Windows Network Address Translation (NAT) Denial of Service Vulnerability Windows Network Address Translation (NAT) Denial of Service Vulnerability

nvd

CVE-2024-21363HIGHCVSS 7.8fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21363 [HIGH] CWE-843 CVE-2024-21363: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

nvd

CVE-2024-21351HIGHCVSS 7.6KEV≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21351 [HIGH] CWE-94 CVE-2024-21351: Windows SmartScreen Security Feature Bypass Vulnerability Windows SmartScreen Security Feature Bypass Vulnerability

nvd

CVE-2024-21361HIGHCVSS 8.8fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21361 [HIGH] CWE-122 CVE-2024-21361: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21420HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21420 [HIGH] CWE-190 CVE-2024-21420: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21360HIGHCVSS 8.8fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21360 [HIGH] CWE-122 CVE-2024-21360: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21358HIGHCVSS 8.8fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21358 [HIGH] CWE-122 CVE-2024-21358: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

← Previous62 / 209Next →