Vulnerabilities > Microsoft > Windows Server 2019 > High

DATE CVE VULNERABILITY TITLE RISK
2019-08-14 CVE-2019-1225 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory.
network
low complexity
microsoft CWE-200
7.5
2019-08-14 CVE-2019-1224 Information Exposure vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory.
network
low complexity
microsoft CWE-200
7.5
2019-08-14 CVE-2019-1223 Unspecified vulnerability in Microsoft products
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests.
network
low complexity
microsoft
7.5
2019-08-14 CVE-2019-1206 Out-of-bounds Write vulnerability in Microsoft products
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server.
network
low complexity
microsoft CWE-787
7.5
2019-08-14 CVE-2019-1190 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the way that the Windows kernel image handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application. The security update addresses the vulnerability by ensuring the Windows kernel image properly handles objects in memory.
local
low complexity
microsoft
7.8
2019-08-14 CVE-2019-1188 Link Following vulnerability in Microsoft products
A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user.
network
high complexity
microsoft CWE-59
7.5
2019-08-14 CVE-2019-1186 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory.
local
high complexity
microsoft
7.0
2019-08-14 CVE-2019-1183 Unspecified vulnerability in Microsoft products
This information is being revised to indicate that this CVE (CVE-2019-1183) is fully mitigated by the security updates for the vulnerability discussed in CVE-2019-1194.
network
low complexity
microsoft
8.8
2019-08-14 CVE-2019-1180 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory.
local
high complexity
microsoft
7.0
2019-08-14 CVE-2019-1179 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory.
local
high complexity
microsoft
7.0