Exposure of Windows Server
Operating systems1,483
exposure score
243,602
sites use
33
exploited
3
critical
CVEs
831 resultsCVE-2020-0910—A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated usEPSS 9.0%CVE-2019-1484—A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code EPSS 8.9%CVE-2020-1283—A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.EPSS 8.8%CVE-2020-0684—A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attaEPSS 8.7%CVE-2020-1374—A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote DeEPSS 8.4%CVE-2019-0784—A remote code execution vulnerability exists in the way that the ActiveX Data objects (ADO) handles objects in memory, aka 'Windows ActiveX EPSS 8.3%CVE-2019-1471—A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated usEPSS 8.1%CVE-2020-0611—A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote DeEPSS 8.1%CVE-2019-0688—An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles fragmented IP packets, aka 'Windows TCP/IP IEPSS 7.9%CVE-2020-1375—An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of PriEPSS 7.7%CVE-2019-0660—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.7%CVE-2019-0619—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.7%CVE-2019-0616—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.7%CVE-2019-0615—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.7%CVE-2019-0602—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.7%CVE-2019-0664—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.7%CVE-2020-1113—A security feature bypass vulnerability exists in Microsoft Windows when the Task Scheduler service fails to properly verify client connectiEPSS 7.3%CVE-2019-0786—An elevation of privilege vulnerability exists in the Microsoft Server Message Block (SMB) Server when an attacker with valid credentials atEPSS 7.0%CVE-2019-0882—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.0%CVE-2019-0774—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 7.0%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →