Microsoft Windows Server 2019 vulnerabilities

3,499 known vulnerabilities affecting microsoft/windows_server_2019.

Total CVEs

3,499

CISA KEV

123

actively exploited

Public exploits

Exploited in wild

111

Severity breakdown

CRITICAL104HIGH2454MEDIUM928LOW13

Vulnerabilities

Page 75 of 175

CVE-2024-20700HIGHCVSS 7.5fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20700 [HIGH] CWE-362 CVE-2024-20700: Windows Hyper-V Remote Code Execution Vulnerability Windows Hyper-V Remote Code Execution Vulnerability

nvd

CVE-2024-20698HIGHCVSS 7.8fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20698 [HIGH] CWE-190 CVE-2024-20698: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-20682HIGHCVSS 7.8≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20682 [HIGH] CWE-822 CVE-2024-20682: Windows Cryptographic Services Remote Code Execution Vulnerability Windows Cryptographic Services Remote Code Execution Vulnerability

nvd

CVE-2024-20696HIGHCVSS 7.3fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20696 [HIGH] CWE-122 CVE-2024-20696: Windows libarchive Remote Code Execution Vulnerability Windows libarchive Remote Code Execution Vulnerability

nvd

CVE-2024-20652HIGHCVSS 8.1≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20652 [HIGH] CWE-73 CVE-2024-20652: Windows HTML Platforms Security Feature Bypass Vulnerability Windows HTML Platforms Security Feature Bypass Vulnerability

nvd

CVE-2024-20687HIGHCVSS 7.5≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20687 [HIGH] CWE-125 CVE-2024-20687: Microsoft AllJoyn API Denial of Service Vulnerability Microsoft AllJoyn API Denial of Service Vulnerability

nvd

CVE-2024-20683HIGHCVSS 7.8≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20683 [HIGH] CWE-416 Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability

cvelistv5

CVE-2024-21307HIGHCVSS 7.5fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-21307 [HIGH] CWE-416 CVE-2024-21307: Remote Desktop Client Remote Code Execution Vulnerability Remote Desktop Client Remote Code Execution Vulnerability

nvd

CVE-2024-20661HIGHCVSS 7.5≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20661 [HIGH] CWE-476 CVE-2024-20661: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2024-20664MEDIUMCVSS 6.5≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20664 [MEDIUM] CWE-822 CVE-2024-20664: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2024-21314MEDIUMCVSS 6.5fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-21314 [MEDIUM] CWE-125 CVE-2024-21314: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2024-21316MEDIUMCVSS 6.1fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-21316 [MEDIUM] CWE-20 CVE-2024-21316: Windows Server Key Distribution Service Security Feature Bypass Windows Server Key Distribution Service Security Feature Bypass

nvd

CVE-2024-21320MEDIUMCVSS 6.5PoC≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-21320 [MEDIUM] CWE-200 Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability

cvelistv5

CVE-2024-20692MEDIUMCVSS 5.7fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20692 [MEDIUM] CWE-326 CVE-2024-20692: Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

nvd

CVE-2024-20691MEDIUMCVSS 4.7≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20691 [MEDIUM] CWE-125 CVE-2024-20691: Windows Themes Information Disclosure Vulnerability Windows Themes Information Disclosure Vulnerability

nvd

CVE-2024-20666MEDIUMCVSS 6.6≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20666 [MEDIUM] CWE-20 BitLocker Security Feature Bypass Vulnerability BitLocker Security Feature Bypass Vulnerability BitLocker Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-21305MEDIUMCVSS 4.4fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-21305 [MEDIUM] CWE-732 CVE-2024-21305: Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability

nvd

CVE-2024-20655MEDIUMCVSS 6.6≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20655 [MEDIUM] CWE-416 CVE-2024-20655: Microsoft Online Certificate Status Protocol (OCSP) Remote Code Execution Vulnerability Microsoft Online Certificate Status Protocol (OCSP) Remote Code Execution Vulnerability

nvd

CVE-2024-20694MEDIUMCVSS 5.5fixed in 10.0.17763.5329≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20694 [MEDIUM] CWE-908 CVE-2024-20694: Windows CoreMessaging Information Disclosure Vulnerability Windows CoreMessaging Information Disclosure Vulnerability

nvd

CVE-2024-20660MEDIUMCVSS 6.5≥ 10.0.17763.0, < 10.0.17763.53292024-01-09

CVE-2024-20660 [MEDIUM] CWE-125 CVE-2024-20660: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

← Previous75 / 175Next →