Microsoft Windows Server 2016 vulnerabilities
4,167 known vulnerabilities affecting microsoft/windows_server_2016.
Total CVEs
4,167
CISA KEV
114
actively exploited
Public exploits
129
Exploited in wild
107
Severity breakdown
CRITICAL114HIGH2916MEDIUM1118LOW19
Vulnerabilities
Page 97 of 209
CVE-2022-34724HIGHCVSS 7.5≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-34724 [HIGH] CVE-2022-34724: Windows DNS Server Denial of Service Vulnerability
Windows DNS Server Denial of Service Vulnerability
nvd
CVE-2022-34732HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-34732 [HIGH] CVE-2022-34732: Microsoft ODBC Driver Remote Code Execution Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
nvd
CVE-2022-34733HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-34733 [HIGH] CVE-2022-34733: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
nvd
CVE-2022-37955HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-37955 [HIGH] CVE-2022-37955: Windows Group Policy Elevation of Privilege Vulnerability
Windows Group Policy Elevation of Privilege Vulnerability
nvd
CVE-2022-35840HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-35840 [HIGH] CVE-2022-35840: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
nvd
CVE-2022-37957HIGHCVSS 7.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-37957 [HIGH] CVE-2022-37957: Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
nvd
CVE-2022-34730HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-34730 [HIGH] CVE-2022-34730: Microsoft ODBC Driver Remote Code Execution Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
nvd
CVE-2022-35841HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-35841 [HIGH] CVE-2022-35841: Windows Enterprise App Management Service Remote Code Execution Vulnerability
Windows Enterprise App Management Service Remote Code Execution Vulnerability
nvd
CVE-2022-34726HIGHCVSS 8.8≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-34726 [HIGH] CVE-2022-34726: Microsoft ODBC Driver Remote Code Execution Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
nvd
CVE-2022-33679HIGHCVSS 8.1≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-33679 [HIGH] CVE-2022-33679: Windows Kerberos Elevation of Privilege Vulnerability
Windows Kerberos Elevation of Privilege Vulnerability
nvd
CVE-2022-35832MEDIUMCVSS 5.5≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-35832 [MEDIUM] CVE-2022-35832: Windows Event Tracing Denial of Service Vulnerability
Windows Event Tracing Denial of Service Vulnerability
nvd
CVE-2022-35831MEDIUMCVSS 5.5≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-35831 [MEDIUM] CWE-125 CVE-2022-35831: Windows Remote Access Connection Manager Information Disclosure Vulnerability
Windows Remote Access Connection Manager Information Disclosure Vulnerability
nvd
CVE-2022-38006MEDIUMCVSS 6.5≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-38006 [MEDIUM] CVE-2022-38006: Windows Graphics Component Information Disclosure Vulnerability
Windows Graphics Component Information Disclosure Vulnerability
nvd
CVE-2022-34728MEDIUMCVSS 5.5≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-34728 [MEDIUM] CVE-2022-34728: Windows Graphics Component Information Disclosure Vulnerability
Windows Graphics Component Information Disclosure Vulnerability
nvd
CVE-2022-35837MEDIUMCVSS 6.5≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-35837 [MEDIUM] CVE-2022-35837: Windows Graphics Component Information Disclosure Vulnerability
Windows Graphics Component Information Disclosure Vulnerability
nvd
CVE-2022-37959MEDIUMCVSS 6.5≥ 10.0.14393.0, < 10.0.14393.53562022-09-13
CVE-2022-37959 [MEDIUM] CVE-2022-37959: Network Device Enrollment Service (NDES) Security Feature Bypass Vulnerability
Network Device Enrollment Service (NDES) Security Feature Bypass Vulnerability
nvd
CVE-2022-34301MEDIUMCVSS 6.7v20h22022-08-26
CVE-2022-34301 [MEDIUM] CVE-2022-34301: A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bo
A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Pa
nvd
CVE-2022-34303MEDIUMCVSS 6.7v20h22022-08-26
CVE-2022-34303 [MEDIUM] CVE-2022-34303: A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to b
A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is re
nvd
CVE-2022-34302MEDIUMCVSS 6.7v20h22022-08-26
CVE-2022-34302 [MEDIUM] CVE-2022-34302: A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this boot
A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Part
nvd
CVE-2022-34711HIGHCVSS 7.8v20h2≥ 10.0.14393.0, < 10.0.14393.52912022-08-15
CVE-2022-34711 [HIGH] CVE-2022-34711: Windows Defender Credential Guard Elevation of Privilege Vulnerability
Windows Defender Credential Guard Elevation of Privilege Vulnerability
nvd