Exposure of Windows Server
Operating systems1,483
exposure score
243,602
sites use
33
exploited
3
critical
CVEs
831 resultsCVE-2020-0610—A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to theEPSS 65.3%CVE-2019-0698—A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, akaEPSS 62.8%CVE-2019-1166—A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (MessageEPSS 61.7%CVE-2020-1300—A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files.To exploit the vulnerability, an EPSS 59.5%CVE-2019-1252—An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows EPSS 59.1%CVE-2019-0726—A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, akaEPSS 54.0%CVE-2019-0785—A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failoEPSS 49.6%CVE-2020-1301—A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests,EPSS 36.7%CVE-2019-0603—A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory. An attacker EPSS 34.2%CVE-2019-1311—A remote code execution vulnerability exists when the Windows Imaging API improperly handles objects in memory, aka 'Windows Imaging API RemEPSS 34.2%CVE-2020-0729—A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attaEPSS 30.2%CVE-2019-0697—A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, akaEPSS 29.6%CVE-2019-0853—A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka EPSS 27.6%CVE-2019-0725—A memory corruption vulnerability exists in the Windows Server DHCP service when processing specially crafted packets, aka 'Windows DHCP SerEPSS 26.3%CVE-2020-0668—An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation oEPSS 26.1%CVE-2020-1400—A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database EnEPSS 23.8%CVE-2019-1117—A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution VEPSS 23.7%CVE-2019-1118—A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution VEPSS 23.7%CVE-2020-0883—A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka EPSS 22.0%CVE-2020-1436—A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts.For all systems exceptEPSS 21.4%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →