Vulnerabilities > Microsoft > Windows Server 2016

DATE CVE VULNERABILITY TITLE RISK
2019-10-10 CVE-2019-1323 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2019-10-10 CVE-2019-1321 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when Windows CloudStore improperly handles file Discretionary Access Control List (DACL), aka 'Microsoft Windows CloudStore Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2019-10-10 CVE-2019-1320 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2019-10-10 CVE-2019-1319 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2019-10-10 CVE-2019-1318 Authentication Bypass by Spoofing vulnerability in Microsoft products
A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'.
network
high complexity
microsoft CWE-290
5.9
2019-10-10 CVE-2019-1317 Link Following vulnerability in Microsoft products
A denial of service vulnerability exists when Windows improperly handles hard links, aka 'Microsoft Windows Denial of Service Vulnerability'.
local
low complexity
microsoft CWE-59
7.3
2019-10-10 CVE-2019-1316 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in Microsoft Windows Setup when it does not properly handle privileges, aka 'Microsoft Windows Setup Elevation of Privilege Vulnerability'.
local
low complexity
microsoft
7.8
2019-10-10 CVE-2019-1315 Link Following vulnerability in Microsoft products
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'.
local
low complexity
microsoft CWE-59
7.8
2019-10-10 CVE-2019-1311 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists when the Windows Imaging API improperly handles objects in memory, aka 'Windows Imaging API Remote Code Execution Vulnerability'.
local
low complexity
microsoft
7.8
2019-10-10 CVE-2019-1230 Improper Input Validation vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Information Disclosure Vulnerability'.
network
low complexity
microsoft CWE-20
6.8