Vulnerabilities > Microsoft > Windows Server 2019

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2023-36593 Unspecified vulnerability in Microsoft products
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
local
low complexity
microsoft
7.3
2023-10-10 CVE-2023-36596 Exposure of Resource to Wrong Sphere vulnerability in Microsoft products
Remote Procedure Call Information Disclosure Vulnerability
network
low complexity
microsoft CWE-668
7.5
2023-10-10 CVE-2023-36605 Unspecified vulnerability in Microsoft products
Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
local
low complexity
microsoft
7.8
2023-10-10 CVE-2023-36606 Unspecified vulnerability in Microsoft products
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
network
low complexity
microsoft
7.5
2023-10-10 CVE-2023-36697 Unspecified vulnerability in Microsoft products
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
network
low complexity
microsoft
8.0
2023-10-10 CVE-2023-36698 Unspecified vulnerability in Microsoft products
Windows Kernel Security Feature Bypass Vulnerability
local
low complexity
microsoft
4.4
2023-10-10 CVE-2023-36707 Unspecified vulnerability in Microsoft products
Windows Deployment Services Denial of Service Vulnerability
network
low complexity
microsoft
7.5
2023-10-10 CVE-2023-44487 The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. 7.5
2023-09-15 CVE-2023-38039 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it would accept in a response, allowing a malicious server to stream an endless series of headers and eventually cause curl to run out of heap memory.
network
low complexity
haxx fedoraproject microsoft CWE-770
7.5
2023-08-08 CVE-2023-20569 Information Exposure Through Discrepancy vulnerability in multiple products
A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction.
local
high complexity
fedoraproject debian amd microsoft CWE-203
4.7