Vulnerabilities > Microsoft > Windows Server 2016 > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-11 | CVE-2019-1138 | Out-of-bounds Write vulnerability in Microsoft Chakracore and Edge A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. | 7.6 |
| 2019-08-14 | CVE-2019-1225 | Information Exposure vulnerability in Microsoft products An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory. | 7.5 |
| 2019-08-14 | CVE-2019-1224 | Information Exposure vulnerability in Microsoft products An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory. | 7.5 |
| 2019-08-14 | CVE-2019-1223 | Unspecified vulnerability in Microsoft products A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. | 7.5 |
| 2019-08-14 | CVE-2019-1206 | Out-of-bounds Write vulnerability in Microsoft products A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server. | 7.5 |
| 2019-08-14 | CVE-2019-1190 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the way that the Windows kernel image handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application. The security update addresses the vulnerability by ensuring the Windows kernel image properly handles objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1188 | Link Following vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. | 7.5 |
| 2019-08-14 | CVE-2019-1186 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. | 7.0 |
| 2019-08-14 | CVE-2019-1185 | Unspecified vulnerability in Microsoft Windows 10 and Windows Server 2016 An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux. | 7.8 |
| 2019-08-14 | CVE-2019-1183 | Unspecified vulnerability in Microsoft products This information is being revised to indicate that this CVE (CVE-2019-1183) is fully mitigated by the security updates for the vulnerability discussed in CVE-2019-1194. | 8.8 |