Microsoft Windows Server 2019 vulnerabilities

3,499 known vulnerabilities affecting microsoft/windows_server_2019.

Total CVEs

3,499

CISA KEV

123

actively exploited

Public exploits

Exploited in wild

111

Severity breakdown

CRITICAL104HIGH2454MEDIUM928LOW13

Vulnerabilities

Page 74 of 175

CVE-2024-21367HIGHCVSS 8.8fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21367 [HIGH] CWE-122 CVE-2024-21367: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21365HIGHCVSS 8.8fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21365 [HIGH] CWE-122 CVE-2024-21365: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21359HIGHCVSS 8.8fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21359 [HIGH] CWE-122 CVE-2024-21359: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-21348HIGHCVSS 7.5fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21348 [HIGH] CWE-122 CVE-2024-21348: Internet Connection Sharing (ICS) Denial of Service Vulnerability Internet Connection Sharing (ICS) Denial of Service Vulnerability

nvd

CVE-2024-21349HIGHCVSS 8.8fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21349 [HIGH] CWE-122 CVE-2024-21349: Microsoft ActiveX Data Objects Remote Code Execution Vulnerability Microsoft ActiveX Data Objects Remote Code Execution Vulnerability

nvd

CVE-2024-21371HIGHCVSS 7.0fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21371 [HIGH] CWE-367 CVE-2024-21371: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-21356MEDIUMCVSS 6.5fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21356 [MEDIUM] CWE-476 CVE-2024-21356: Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

nvd

CVE-2024-21340MEDIUMCVSS 4.6fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21340 [MEDIUM] CWE-126 CVE-2024-21340: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

nvd

CVE-2024-21339MEDIUMCVSS 6.4fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21339 [MEDIUM] CWE-416 CVE-2024-21339: Windows USB Generic Parent Driver Remote Code Execution Vulnerability Windows USB Generic Parent Driver Remote Code Execution Vulnerability

nvd

CVE-2024-21304MEDIUMCVSS 4.1fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21304 [MEDIUM] CWE-20 CVE-2024-21304: Trusted Compute Base Elevation of Privilege Vulnerability Trusted Compute Base Elevation of Privilege Vulnerability

nvd

CVE-2024-21362MEDIUMCVSS 5.5fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21362 [MEDIUM] CWE-367 CVE-2024-21362: Windows Kernel Security Feature Bypass Vulnerability Windows Kernel Security Feature Bypass Vulnerability

nvd

CVE-2024-21377MEDIUMCVSS 5.5≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21377 [MEDIUM] CWE-197 Windows DNS Information Disclosure Vulnerability Windows DNS Information Disclosure Vulnerability Windows DNS Information Disclosure Vulnerability

cvelistv5

CVE-2024-21341MEDIUMCVSS 6.8fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21341 [MEDIUM] CWE-122 CVE-2024-21341: Windows Kernel Remote Code Execution Vulnerability Windows Kernel Remote Code Execution Vulnerability

nvd

CVE-2024-21344MEDIUMCVSS 5.9fixed in 10.0.17763.5458≥ 10.0.17763.0, < 10.0.17763.54582024-02-13

CVE-2024-21344 [MEDIUM] CWE-125 CVE-2024-21344: Windows Network Address Translation (NAT) Denial of Service Vulnerability Windows Network Address Translation (NAT) Denial of Service Vulnerability

nvd

CVE-2024-20658HIGHCVSS 7.8≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20658 [HIGH] CWE-125 CVE-2024-20658: Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

nvd

CVE-2024-20654HIGHCVSS 8.0≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20654 [HIGH] CWE-190 CVE-2024-20654: Microsoft ODBC Driver Remote Code Execution Vulnerability Microsoft ODBC Driver Remote Code Execution Vulnerability

nvd

CVE-2024-20653HIGHCVSS 7.8≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20653 [HIGH] CWE-125 CVE-2024-20653: Microsoft Common Log File System Elevation of Privilege Vulnerability Microsoft Common Log File System Elevation of Privilege Vulnerability

nvd

CVE-2024-20674HIGHCVSS 8.8≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20674 [HIGH] CWE-305 CVE-2024-20674: Windows Kerberos Security Feature Bypass Vulnerability Windows Kerberos Security Feature Bypass Vulnerability

nvd

CVE-2024-21310HIGHCVSS 7.8fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-21310 [HIGH] CWE-197 CVE-2024-21310: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-20657HIGHCVSS 7.0≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20657 [HIGH] CWE-284 CVE-2024-20657: Windows Group Policy Elevation of Privilege Vulnerability Windows Group Policy Elevation of Privilege Vulnerability

nvd

← Previous74 / 175Next →