Windows Server 2019 Security Vulnerabilities

CVE-2023-38254

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxyhandshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allowthat to resolve the address instead of it getting done by curl itself, themaximum length that host name can be is 255 bytes. If the host name is...

CVE-2023-41765

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41766

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

CVE-2023-41767

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41768

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41769

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41770

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41771

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41772

Win32k Elevation of Privilege Vulnerability

CVE-2023-41773

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41774

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2023-50387

Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG ...

CVE-2024-20652

Windows HTML Platforms Security Feature Bypass Vulnerability

CVE-2024-20653

Microsoft Common Log File System Elevation of Privilege Vulnerability

CVE-2024-20654

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2024-20655

Microsoft Online Certificate Status Protocol (OCSP) Remote Code Execution Vulnerability

CVE-2024-20657

Windows Group Policy Elevation of Privilege Vulnerability

CVE-2024-20658

Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

CVE-2024-20660

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2024-20661

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2024-20662

Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability

CVE-2024-20663

Windows Message Queuing Client (MSMQC) Information Disclosure

CVE-2024-20664

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2024-20665

BitLocker Security Feature Bypass Vulnerability

CVE-2024-20666

BitLocker Security Feature Bypass Vulnerability

CVE-2024-20669

Secure Boot Security Feature Bypass Vulnerability

CVE-2024-20674

Windows Kerberos Security Feature Bypass Vulnerability

CVE-2024-20678

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2024-20680

Windows Message Queuing Client (MSMQC) Information Disclosure

CVE-2024-20682

Windows Cryptographic Services Remote Code Execution Vulnerability

CVE-2024-20683

Win32k Elevation of Privilege Vulnerability

CVE-2024-20687

Microsoft AllJoyn API Denial of Service Vulnerability

CVE-2024-20691

Windows Themes Information Disclosure Vulnerability

CVE-2024-20692

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

CVE-2024-20693

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-20694

Windows CoreMessaging Information Disclosure Vulnerability

CVE-2024-20696

Windows Libarchive Remote Code Execution Vulnerability

CVE-2024-20698

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-20699

Windows Hyper-V Denial of Service Vulnerability

CVE-2024-20700

Windows Hyper-V Remote Code Execution Vulnerability

CVE-2024-21304

Trusted Compute Base Elevation of Privilege Vulnerability

CVE-2024-21305

Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability

CVE-2024-21307

Remote Desktop Client Remote Code Execution Vulnerability

CVE-2024-21310

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2024-21311

Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2024-21313

Windows TCP/IP Information Disclosure Vulnerability

CVE-2024-21314

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2024-21316

Windows Server Key Distribution Service Security Feature Bypass