Vulnerabilities > Microsoft > Windows Server 2016 > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-16 | CVE-2020-16905 | Unspecified vulnerability in Microsoft products <p>An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files. | 6.8 |
| 2020-10-16 | CVE-2020-16901 | Improper Initialization vulnerability in Microsoft Windows 10 and Windows Server 2016 <p>An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.</p> <p>To exploit this vulnerability, an authenticated attacker could run a specially crafted application. | 5.0 |
| 2020-10-16 | CVE-2020-16897 | Unspecified vulnerability in Microsoft products <p>An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory. | 5.5 |
| 2020-10-16 | CVE-2020-16889 | Unspecified vulnerability in Microsoft products <p>An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. | 5.5 |
| 2020-09-11 | CVE-2020-16879 | Unspecified vulnerability in Microsoft products <p>An information disclosure vulnerability exists when a Windows Projected Filesystem improperly handles file redirections. | 5.5 |
| 2020-09-11 | CVE-2020-16854 | Unspecified vulnerability in Microsoft products <p>An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. | 5.5 |
| 2020-09-11 | CVE-2020-1598 | Unspecified vulnerability in Microsoft products <p>An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly handles objects in memory. | 6.1 |
| 2020-09-11 | CVE-2020-1596 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Microsoft products <p>A information disclosure vulnerability exists when TLS components use weak hash algorithms. | 5.4 |
| 2020-09-11 | CVE-2020-1592 | Improper Initialization vulnerability in Microsoft products <p>An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.</p> <p>To exploit this vulnerability, an authenticated attacker could run a specially crafted application. | 4.4 |
| 2020-09-11 | CVE-2020-1590 | Unspecified vulnerability in Microsoft products <p>An elevation of privilege vulnerability exists when the Connected User Experiences and Telemetry Service improperly handles file operations. | 6.6 |