) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Keyword (text search): cpe:/o:microsoft:windows_server_2012:-
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2020-17096 |
Windows NTFS Remote Code Execution Vulnerability Published: December 09, 2020; 7:15:14 PM -0500 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 9.0 HIGH |
| CVE-2020-17092 |
Windows Network Connections Service Elevation of Privilege Vulnerability Published: December 09, 2020; 7:15:13 PM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2020-16996 |
Kerberos Security Feature Bypass Vulnerability Published: December 09, 2020; 7:15:13 PM -0500 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0: 4.0 MEDIUM |
| CVE-2020-1599 |
Windows Spoofing Vulnerability Published: November 11, 2020; 2:15:20 AM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2020-17088 |
Windows Common Log File System Driver Elevation of Privilege Vulnerability Published: November 11, 2020; 2:15:19 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 4.6 MEDIUM |
| CVE-2020-17087 |
Windows Kernel Local Elevation of Privilege Vulnerability Published: November 11, 2020; 2:15:18 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2020-17069 |
Windows NDIS Information Disclosure Vulnerability Published: November 11, 2020; 2:15:17 AM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2020-17068 |
Windows GDI+ Remote Code Execution Vulnerability Published: November 11, 2020; 2:15:17 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2020-17056 |
Windows Network File System Information Disclosure Vulnerability Published: November 11, 2020; 2:15:16 AM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2020-17044 |
Windows Remote Access Elevation of Privilege Vulnerability Published: November 11, 2020; 2:15:16 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2020-17043 |
Windows Remote Access Elevation of Privilege Vulnerability Published: November 11, 2020; 2:15:16 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2020-17014 |
Windows Print Spooler Elevation of Privilege Vulnerability Published: November 11, 2020; 2:15:14 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 6.6 MEDIUM |
| CVE-2020-17011 |
Windows Port Class Library Elevation of Privilege Vulnerability Published: November 11, 2020; 2:15:14 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2020-17004 |
Windows Graphics Component Information Disclosure Vulnerability Published: November 11, 2020; 2:15:13 AM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2020-17001 |
Windows Print Spooler Elevation of Privilege Vulnerability Published: November 11, 2020; 2:15:13 AM -0500 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 4.6 MEDIUM |
| CVE-2020-17000 |
Remote Desktop Protocol Client Information Disclosure Vulnerability Published: November 11, 2020; 2:15:13 AM -0500 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0: 2.1 LOW |
| CVE-2020-16997 |
Remote Desktop Protocol Server Information Disclosure Vulnerability Published: November 11, 2020; 2:15:13 AM -0500 |
V4.0:(not available) V3.1: 7.7 HIGH V2.0: 4.0 MEDIUM |
| CVE-2020-16980 |
<p>An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p> <p>To exploit the vulnerability, an attacker would first need code execution on a victim system. An attacker could then run a specially crafted application.</p> <p>The security update addresses the vulnerability by ensuring the Windows iSCSI Target Service properly handles file operations.</p> Published: October 16, 2020; 7:15:17 PM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 4.6 MEDIUM |
| CVE-2020-16949 |
<p>A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system.</p> <p>Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outlook server.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Outlook handles objects in memory.</p> Published: October 16, 2020; 7:15:16 PM -0400 |
V4.0:(not available) V3.1: 4.7 MEDIUM V2.0: 5.0 MEDIUM |
| CVE-2020-16940 |
<p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context.</p> <p>To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and delete files or folders of their choosing.</p> <p>The security update addresses the vulnerability by correcting how the Windows User Profile Service handles junction points.</p> Published: October 16, 2020; 7:15:15 PM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0: 4.9 MEDIUM |