Exposição de Windows Server
Operating systems1.483
score de exposição
243.602
sites usam
33
em exploração
3
críticos
CVEs
831 resultadosCVE-2020-0683HIGHAn elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer EleEPSS 7.7%KEVCVE-2020-1040CRITICALA remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticaEPSS 6.9%KEVCVE-2019-0863HIGHAn elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting ElevatioEPSS 5.2%KEVCVE-2020-1027HIGHAn elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation oEPSS 4.5%KEVCVE-2019-0859HIGHAn elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k EPSS 4.2%KEVCVE-2019-1385HIGHAn elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resultiEPSS 3.6%KEVCVE-2019-1315HIGHAn elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error ReportEPSS 3.5%KEVCVE-2020-0638HIGHAn elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an atEPSS 3.0%KEVCVE-2019-0880HIGHA local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Elevation of PrivilegEPSS 2.4%KEVCVE-2019-1130HIGHAn elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows ElEPSS 2.3%KEVCVE-2019-0797HIGHAn elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k EPSS 1.9%KEVCVE-2019-1129HIGHAn elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows ElEPSS 1.8%KEVCVE-2019-1214HIGHAn elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aEPSS 1.3%KEVCVE-2019-1358—A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database EnEPSS 76.5%CVE-2019-1439—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 75.9%CVE-2020-1421—A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attaEPSS 75.8%CVE-2020-0609—A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to theEPSS 74.9%CVE-2019-0626—A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP serveEPSS 68.3%CVE-2019-0618—A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka EPSS 67.0%CVE-2020-0655—A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an authenticated atEPSS 65.7%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →