CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft » Windows Server 2019 : Security Vulnerabilities

CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-32230 476 2022-06-14 2022-06-23
7.8
 None Remote Low Not required None None Complete
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.
2 CVE-2022-30190 Exec Code 2022-06-01 2022-06-07
9.3
 None Remote Medium Not required Complete Complete Complete
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability.
3 CVE-2022-30166 2022-06-15 2022-06-27
4.6
 None Local Low Not required Partial Partial Partial
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability.
4 CVE-2022-30165 2022-06-15 2022-06-27
6.5
 None Remote Low ??? Partial Partial Partial
Windows Kerberos Elevation of Privilege Vulnerability.
5 CVE-2022-30164 863 Bypass 2022-06-15 2022-06-25
4.6
 None Local Low Not required Partial Partial Partial
Kerberos AppContainer Security Feature Bypass Vulnerability.
6 CVE-2022-30163 362 Exec Code 2022-06-15 2022-06-27
6.0
 None Remote Medium ??? Partial Partial Partial
Windows Hyper-V Remote Code Execution Vulnerability.
7 CVE-2022-30162 2022-06-15 2022-06-25
2.1
 None Local Low Not required Partial None None
Windows Kernel Information Disclosure Vulnerability.
8 CVE-2022-30161 Exec Code 2022-06-15 2022-06-27
6.8
 None Remote Medium Not required Partial Partial Partial
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153.
9 CVE-2022-30160 2022-06-15 2022-06-25
4.6
 None Local Low Not required Partial Partial Partial
Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability.
10 CVE-2022-30155 400 DoS 2022-06-15 2022-06-25
7.1
 None Remote Medium Not required None None Complete
Windows Kernel Denial of Service Vulnerability.
11 CVE-2022-30154 269 2022-06-15 2022-06-24
2.1
 None Remote High ??? None Partial None
Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability.
12 CVE-2022-30153 Exec Code 2022-06-15 2022-06-27
6.8
 None Remote Medium Not required Partial Partial Partial
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30161.
13 CVE-2022-30152 400 DoS 2022-06-15 2022-06-25
5.0
 None Remote Low Not required None None Partial
Windows Network Address Translation (NAT) Denial of Service Vulnerability.
14 CVE-2022-30151 269 2022-06-15 2022-06-27
4.4
 None Local Medium Not required Partial Partial Partial
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability.
15 CVE-2022-30150 269 2022-06-15 2022-06-25
6.8
 None Remote Medium Not required Partial Partial Partial
Windows Defender Remote Credential Guard Elevation of Privilege Vulnerability.
16 CVE-2022-30149 Exec Code 2022-06-15 2022-06-27
5.1
 None Remote High Not required Partial Partial Partial
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30153, CVE-2022-30161.
17 CVE-2022-30148 532 2022-06-15 2022-06-27
2.1
 None Local Low Not required Partial None None
Windows Desired State Configuration (DSC) Information Disclosure Vulnerability.
18 CVE-2022-30147 2022-06-15 2022-06-27
7.2
 None Local Low Not required Complete Complete Complete
Windows Installer Elevation of Privilege Vulnerability.
19 CVE-2022-30146 Exec Code 2022-06-15 2022-06-27
5.1
 None Remote High Not required Partial Partial Partial
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.
20 CVE-2022-30145 94 Exec Code 2022-06-15 2022-06-25
6.0
 None Remote Medium ??? Partial Partial Partial
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability.
21 CVE-2022-30143 Exec Code 2022-06-15 2022-06-27
5.1
 None Remote High Not required Partial Partial Partial
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.
22 CVE-2022-30142 Exec Code 2022-06-15 2022-06-27
7.6
 None Remote High Not required Complete Complete Complete
Windows File History Remote Code Execution Vulnerability.
23 CVE-2022-30141 94 Exec Code 2022-06-15 2022-06-25
9.3
 None Remote Medium Not required Complete Complete Complete
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.
24 CVE-2022-30140 Exec Code 2022-06-15 2022-06-27
5.1
 None Remote High Not required Partial Partial Partial
Windows iSCSI Discovery Service Remote Code Execution Vulnerability.
25 CVE-2022-30139 Exec Code 2022-06-15 2022-06-27
6.8
 None Remote Medium Not required Partial Partial Partial
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.
26 CVE-2022-30138 2022-05-18 2022-05-31
7.2
 None Local Low Not required Complete Complete Complete
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104, CVE-2022-29132.
27 CVE-2022-30136 Exec Code 2022-06-15 2022-06-24
10.0
 None Remote Low Not required Complete Complete Complete
Windows Network File System Remote Code Execution Vulnerability.
28 CVE-2022-30132 2022-06-15 2022-06-24
7.2
 None Local Low Not required Complete Complete Complete
Windows Container Manager Service Elevation of Privilege Vulnerability.
29 CVE-2022-30131 2022-06-15 2022-06-24
7.2
 None Local Low Not required Complete Complete Complete
Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability.
30 CVE-2022-29151 2022-05-10 2022-05-23
6.9
 None Local Medium Not required Complete Complete Complete
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29135, CVE-2022-29150.
31 CVE-2022-29150 2022-05-10 2022-05-23
6.9
 None Local Medium Not required Complete Complete Complete
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29135, CVE-2022-29151.
32 CVE-2022-29142 2022-05-10 2022-05-23
6.9
 None Local Medium Not required Complete Complete Complete
Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29133.
33 CVE-2022-29141 Exec Code 2022-05-10 2022-05-23
6.5
 None Remote Low ??? Partial Partial Partial
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139.
34 CVE-2022-29140 2022-05-10 2022-05-23
2.1
 None Local Low Not required Partial None None
Windows Print Spooler Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29114.
35 CVE-2022-29139 Exec Code 2022-05-10 2022-05-23
6.8
 None Remote Medium Not required Partial Partial Partial
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29141.
36 CVE-2022-29138 2022-05-10 2022-05-23
6.9
 None Local Medium Not required Complete Complete Complete
Windows Clustered Shared Volume Elevation of Privilege Vulnerability.
37 CVE-2022-29137 Exec Code 2022-05-10 2022-05-23
6.5
 None Remote Low ??? Partial Partial Partial
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29139, CVE-2022-29141.
38 CVE-2022-29135 2022-05-10 2022-05-23
6.9
 None Local Medium Not required Complete Complete Complete
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29150, CVE-2022-29151.
39 CVE-2022-29134 2022-05-10 2022-05-23
2.1
 None Local Low Not required Partial None None
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29122, CVE-2022-29123.
40 CVE-2022-29132 2022-05-10 2022-05-23
7.2
 None Local Low Not required Complete Complete Complete
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104.
41 CVE-2022-29131 Exec Code 2022-05-10 2022-05-23
9.0
 None Remote Low ??? Complete Complete Complete
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.
42 CVE-2022-29130 Exec Code 2022-05-10 2022-05-23
9.3
 None Remote Medium Not required Complete Complete Complete
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.
43 CVE-2022-29129 Exec Code 2022-05-10 2022-05-23
9.0
 None Remote Low ??? Complete Complete Complete
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.
44 CVE-2022-29128 Exec Code 2022-05-10 2022-05-23
9.0
 None Remote Low ??? Complete Complete Complete
Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.
45 CVE-2022-29127 Bypass 2022-05-10 2022-05-23
1.9
 None Local Medium Not required Partial None None
BitLocker Security Feature Bypass Vulnerability.
46 CVE-2022-29126 2022-05-10 2022-05-23
6.9
 None Local Medium Not required Complete Complete Complete
Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability.
47 CVE-2022-29125 269 2022-05-10 2022-05-23
4.4
 None Local Medium Not required Partial Partial Partial
Windows Push Notifications Apps Elevation of Privilege Vulnerability.
48 CVE-2022-29123 668 2022-05-10 2022-05-23
2.1
 None Local Low Not required Partial None None
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29122, CVE-2022-29134.
49 CVE-2022-29122 668 2022-05-10 2022-05-23
2.1
 None Local Low Not required Partial None None
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29120, CVE-2022-29123, CVE-2022-29134.
50 CVE-2022-29121 400 DoS 2022-05-10 2022-05-25
3.3
 None Local Network Low Not required None None Partial
Windows WLAN AutoConfig Service Denial of Service Vulnerability.
Total number of vulnerabilities : 1998   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.