Microsoft Windows Server 2016 vulnerabilities

4,167 known vulnerabilities affecting microsoft/windows_server_2016.

Total CVEs

4,167

CISA KEV

114

actively exploited

Public exploits

129

Exploited in wild

107

Severity breakdown

CRITICAL114HIGH2916MEDIUM1118LOW19

Vulnerabilities

Page 64 of 209

CVE-2024-21344MEDIUMCVSS 5.9fixed in 10.0.14393.6709≥ 10.0.14393.0, < 10.0.14393.67092024-02-13

CVE-2024-21344 [MEDIUM] CWE-125 CVE-2024-21344: Windows Network Address Translation (NAT) Denial of Service Vulnerability Windows Network Address Translation (NAT) Denial of Service Vulnerability

nvd

CVE-2024-20658HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20658 [HIGH] CWE-125 CVE-2024-20658: Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

nvd

CVE-2024-20654HIGHCVSS 8.0≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20654 [HIGH] CWE-190 CVE-2024-20654: Microsoft ODBC Driver Remote Code Execution Vulnerability Microsoft ODBC Driver Remote Code Execution Vulnerability

nvd

CVE-2024-20653HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20653 [HIGH] CWE-125 CVE-2024-20653: Microsoft Common Log File System Elevation of Privilege Vulnerability Microsoft Common Log File System Elevation of Privilege Vulnerability

nvd

CVE-2024-20674HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20674 [HIGH] CWE-305 CVE-2024-20674: Windows Kerberos Security Feature Bypass Vulnerability Windows Kerberos Security Feature Bypass Vulnerability

nvd

CVE-2024-20657HIGHCVSS 7.0≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20657 [HIGH] CWE-284 CVE-2024-20657: Windows Group Policy Elevation of Privilege Vulnerability Windows Group Policy Elevation of Privilege Vulnerability

nvd

CVE-2024-20682HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20682 [HIGH] CWE-822 CVE-2024-20682: Windows Cryptographic Services Remote Code Execution Vulnerability Windows Cryptographic Services Remote Code Execution Vulnerability

nvd

CVE-2024-20652HIGHCVSS 8.1≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20652 [HIGH] CWE-73 CVE-2024-20652: Windows HTML Platforms Security Feature Bypass Vulnerability Windows HTML Platforms Security Feature Bypass Vulnerability

nvd

CVE-2024-20687HIGHCVSS 7.5≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20687 [HIGH] CWE-125 CVE-2024-20687: Microsoft AllJoyn API Denial of Service Vulnerability Microsoft AllJoyn API Denial of Service Vulnerability

nvd

CVE-2024-20683HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20683 [HIGH] CWE-416 Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability

cvelistv5

CVE-2024-21307HIGHCVSS 7.5fixed in 10.0.14393.6614≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-21307 [HIGH] CWE-416 CVE-2024-21307: Remote Desktop Client Remote Code Execution Vulnerability Remote Desktop Client Remote Code Execution Vulnerability

nvd

CVE-2024-20661HIGHCVSS 7.5≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20661 [HIGH] CWE-476 CVE-2024-20661: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2024-20664MEDIUMCVSS 6.5≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20664 [MEDIUM] CWE-822 CVE-2024-20664: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2024-21314MEDIUMCVSS 6.5fixed in 10.0.14393.6614≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-21314 [MEDIUM] CWE-125 CVE-2024-21314: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2024-21316MEDIUMCVSS 6.1≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-21316 [MEDIUM] CWE-20 CVE-2024-21316: Windows Server Key Distribution Service Security Feature Bypass Windows Server Key Distribution Service Security Feature Bypass

nvd

CVE-2024-21320MEDIUMCVSS 6.5PoC≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-21320 [MEDIUM] CWE-200 Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability

cvelistv5

CVE-2024-20692MEDIUMCVSS 5.7fixed in 10.0.14393.6614≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20692 [MEDIUM] CWE-326 CVE-2024-20692: Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

nvd

CVE-2024-20691MEDIUMCVSS 4.7≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20691 [MEDIUM] CWE-125 CVE-2024-20691: Windows Themes Information Disclosure Vulnerability Windows Themes Information Disclosure Vulnerability

nvd

CVE-2024-20666MEDIUMCVSS 6.6≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20666 [MEDIUM] CWE-20 BitLocker Security Feature Bypass Vulnerability BitLocker Security Feature Bypass Vulnerability BitLocker Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-20655MEDIUMCVSS 6.6≥ 10.0.14393.0, < 10.0.14393.66142024-01-09

CVE-2024-20655 [MEDIUM] CWE-416 CVE-2024-20655: Microsoft Online Certificate Status Protocol (OCSP) Remote Code Execution Vulnerability Microsoft Online Certificate Status Protocol (OCSP) Remote Code Execution Vulnerability

nvd

← Previous64 / 209Next →