Vulnerabilities > Microsoft > Windows Server 2019

DATE CVE VULNERABILITY TITLE RISK
2024-02-14 CVE-2023-50387 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue.
7.5
2024-02-13 CVE-2024-21343 Unspecified vulnerability in Microsoft products
Windows Network Address Translation (NAT) Denial of Service Vulnerability
network
low complexity
microsoft
7.5
2024-02-13 CVE-2024-21363 Unspecified vulnerability in Microsoft products
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
local
low complexity
microsoft
7.8
2024-01-09 CVE-2024-20692 Exposure of Resource to Wrong Sphere vulnerability in Microsoft products
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
network
low complexity
microsoft CWE-668
5.7
2024-01-09 CVE-2024-21320 Unspecified vulnerability in Microsoft products
Windows Themes Spoofing Vulnerability
network
low complexity
microsoft
6.5
2023-12-12 CVE-2023-36003 Unspecified vulnerability in Microsoft products
XAML Diagnostics Elevation of Privilege Vulnerability
local
low complexity
microsoft
7.3
2023-12-12 CVE-2023-36005 Unspecified vulnerability in Microsoft products
Windows Telephony Server Elevation of Privilege Vulnerability
network
high complexity
microsoft
8.1
2023-11-28 CVE-2023-24023 Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.
high complexity
bluetooth microsoft
6.8
2023-11-14 CVE-2023-36017 Out-of-bounds Write vulnerability in Microsoft products
Windows Scripting Engine Memory Corruption Vulnerability
network
low complexity
microsoft CWE-787
8.8
2023-11-14 CVE-2023-36025 Unspecified vulnerability in Microsoft products
Windows SmartScreen Security Feature Bypass Vulnerability
network
low complexity
microsoft
8.8