Microsoft Windows Server 2019 vulnerabilities

3,499 known vulnerabilities affecting microsoft/windows_server_2019.

Total CVEs
3,499
CISA KEV
124
actively exploited
Public exploits
70
Exploited in wild
111
Severity breakdown
CRITICAL104HIGH2454MEDIUM928LOW13

Vulnerabilities

Page 133 of 175
CVE-2021-41379HIGHCVSS 7.8KEVfixed in 10.0.17763.2300≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-41379 [HIGH] CWE-59 CVE-2021-41379: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability
nvd
CVE-2021-41366HIGHCVSS 7.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-41366 [HIGH] CWE-269 CVE-2021-41366: Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
nvd
CVE-2021-42287HIGHCVSS 8.8KEVfixed in 10.0.17763.2300≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42287 [HIGH] CVE-2021-42287: Active Directory Domain Services Elevation of Privilege Vulnerability Active Directory Domain Services Elevation of Privilege Vulnerability
nvd
CVE-2021-41370HIGHCVSS 7.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-41370 [HIGH] NTFS Elevation of Privilege Vulnerability NTFS Elevation of Privilege Vulnerability NTFS Elevation of Privilege Vulnerability
cvelistv5
CVE-2021-42276HIGHCVSS 7.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42276 [HIGH] CVE-2021-42276: Microsoft Windows Media Foundation Remote Code Execution Vulnerability Microsoft Windows Media Foundation Remote Code Execution Vulnerability
nvd
CVE-2021-42277HIGHCVSS 7.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42277 [HIGH] CWE-269 CVE-2021-42277: Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
nvd
CVE-2021-42275HIGHCVSS 8.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42275 [HIGH] CVE-2021-42275: Microsoft COM for Windows Remote Code Execution Vulnerability Microsoft COM for Windows Remote Code Execution Vulnerability
nvd
CVE-2021-42280HIGHCVSS 7.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42280 [HIGH] CWE-269 CVE-2021-42280: Windows Feedback Hub Elevation of Privilege Vulnerability Windows Feedback Hub Elevation of Privilege Vulnerability
nvd
CVE-2021-42279HIGHCVSS 7.5≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42279 [HIGH] CWE-787 CVE-2021-42279: Chakra Scripting Engine Memory Corruption Vulnerability Chakra Scripting Engine Memory Corruption Vulnerability
nvd
CVE-2021-42282HIGHCVSS 8.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42282 [HIGH] CWE-269 CVE-2021-42282: Active Directory Domain Services Elevation of Privilege Vulnerability Active Directory Domain Services Elevation of Privilege Vulnerability
nvd
CVE-2021-42278HIGHCVSS 7.5KEVfixed in 10.0.17763.2300≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42278 [HIGH] CVE-2021-42278: Active Directory Domain Services Elevation of Privilege Vulnerability Active Directory Domain Services Elevation of Privilege Vulnerability
nvd
CVE-2021-38666HIGHCVSS 8.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-38666 [HIGH] CVE-2021-38666: Remote Desktop Client Remote Code Execution Vulnerability Remote Desktop Client Remote Code Execution Vulnerability
nvd
CVE-2021-42288MEDIUMCVSS 6.1≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42288 [MEDIUM] CVE-2021-42288: Windows Hello Security Feature Bypass Vulnerability Windows Hello Security Feature Bypass Vulnerability
nvd
CVE-2021-38631MEDIUMCVSS 4.4≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-38631 [MEDIUM] CVE-2021-38631: Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
nvd
CVE-2021-38665MEDIUMCVSS 6.5≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-38665 [MEDIUM] CVE-2021-38665: Remote Desktop Protocol Client Information Disclosure Vulnerability Remote Desktop Protocol Client Information Disclosure Vulnerability
nvd
CVE-2021-42274MEDIUMCVSS 6.5≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42274 [MEDIUM] CVE-2021-42274: Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability
nvd
CVE-2021-42284MEDIUMCVSS 6.8≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-42284 [MEDIUM] Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability
cvelistv5
CVE-2021-41371MEDIUMCVSS 4.4≥ 10.0.0, < 10.0.17763.23002021-11-10
CVE-2021-41371 [MEDIUM] CVE-2021-41371: Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
nvd
CVE-2021-40461CRITICALCVSS 9.0≥ 10.0.0, < 10.0.17763.22372021-10-13
CVE-2021-40461 [CRITICAL] CVE-2021-40461: Windows Hyper-V Remote Code Execution Vulnerability Windows Hyper-V Remote Code Execution Vulnerability
nvd
CVE-2021-26441HIGHCVSS 7.8≥ 10.0.0, < 10.0.17763.22372021-10-13
CVE-2021-26441 [HIGH] CWE-269 CVE-2021-26441: Storage Spaces Controller Elevation of Privilege Vulnerability Storage Spaces Controller Elevation of Privilege Vulnerability
nvd
← Previous133 / 175Next →
Microsoft Windows Server 2019 vulnerabilities | cvebase