Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Windows Server Number Of NVD 5129 CRITICAL 122 HIGH 3492 MEDIUM 1445 LOW 70
URL https://www.microsoft.com/
Explanation Server products offered by Microsoft.

For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support).
You may need to deploy the latest updates to be eligible for support.
For some products, the support organization may be less than 10 years.

For consumer and multimedia products, five years of mainstream support at the supported Service Pack level.

The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag
  • Microsoft
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://support.microsoft.com//lifecycle/search
2 https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3 https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4 https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
4151 Windows Server 2022 21H2 Nov. 2, 2021 Nov. 2, 2021 Oct. 13, 2026 Oct. 14, 2031 53 1311 428 5
4152 Windows Server 2019 1809 Oct. 2, 2018 Nov. 13, 2018 Jan. 9, 2024 Jan. 9, 2029 94 2491 892 11
4153 Windows Server 2016 20H2 Oct. 20, 2020 Oct. 15, 2016 Jan. 11, 2022 Jan. 12, 2027 103 2578 1017 15
4154 Windows Server 2012 Oct. 30, 2012 Oct. 30, 2012 Oct. 9, 2018 Oct. 10, 2023 94 2201 917 50
4155 Windows Server 2008 R2( Service Pack 1適用) Feb. 22, 2011 Jan. 14, 2020 0 0 0 0
4156 Windows Server 2008(Service Pack 2適用) April 29, 2009 Jan. 14, 2020 0 0 0 0
4157 Microsoft Windows Server 2003(Service Pack 2適用) May 28, 2003 July 13, 2010 July 14, 2015 0 128 53 15
4158 Microsoft Windows Storage Server 2003 May 5, 2003 Oct. 11, 2011 Oct. 9, 2016 0 128 53 15
4159 Microsoft Windows 2000(Service Pack 4適用) March 31, 2000 June 30, 2005 July 13, 2010 2 40 19 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
4151 7.0
6.9 		HIGH
Local 		The Graphics component in the kernel in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka "Window… NVD-CWE-noinfo
CVE-2017-0155 cpe:2.3:o:microsoft:windows_server_2008:r2:sp1 2024-11-21 12:02
2017-04-12 		Show GitHub Exploit DB Packet Storm
4152 4.7
1.9 		MEDIUM
Local 		A Win32k information disclosure vulnerability exists in Microsoft Windows when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability co… CWE-200
Information Exposure 		CVE-2017-0058 cpe:2.3:o:microsoft:windows_server_2012:r2:*
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1 		2024-11-21 12:02
2017-04-12 		Show GitHub Exploit DB Packet Storm
4153 7.5
4.3 		HIGH
Network 		The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; … NVD-CWE-noinfo
CVE-2017-0147 cpe:2.3:o:microsoft:windows_server_2016:-:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*
cpe:2.3:o:microsoft:wind… 		2026-04-22 22:50
2017-03-17 		Show GitHub Exploit DB Packet Storm
4154 7.8
6.8 		HIGH
Local 		The kernel-mode drivers in Transaction Manager in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1; Windows 10 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-0101 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 2026-04-22 22:49
2017-03-17 		Show GitHub Exploit DB Packet Storm
4155 6.5
4.3 		MEDIUM
Network 		Microsoft XML Core Services (MSXML) in Windows 10 Gold, 1511, and 1607; Windows 7 SP1; Windows 8.1; Windows RT 8.1; Windows Server 2008 SP2 and R2 SP1; Windows Server 2012 Gold and R2; Windows Server… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-0022 cpe:2.3:o:microsoft:windows_server_2012:r2:*
cpe:2.3:o:microsoft:windows_server_2012:-:*
cpe:2.3:o:microsoft:wind… 		2026-04-22 22:49
2017-03-17 		Show GitHub Exploit DB Packet Storm
4156 7.8
6.9 		HIGH
Local 		The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gol… NVD-CWE-noinfo
CVE-2017-0005 cpe:2.3:o:microsoft:windows_server_2016:-:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*
cpe:2.3:o:microsoft:wind… 		2026-04-22 22:49
2017-03-17 		Show GitHub Exploit DB Packet Storm
4157 7.8
7.2 		HIGH
Local 		The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gol… NVD-CWE-noinfo
CVE-2017-0001 cpe:2.3:o:microsoft:windows_server_2016:-:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*
cpe:2.3:o:microsoft:wind… 		2026-04-22 22:49
2017-03-17 		Show GitHub Exploit DB Packet Storm
4158 4.3
4.3 		MEDIUM
Network 		Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka… CWE-200
Information Exposure 		CVE-2017-0120 cpe:2.3:o:microsoft:windows_server_2008:r2:sp1 2024-11-21 12:02
2017-03-17 		Show GitHub Exploit DB Packet Storm
4159 8.1
9.3 		HIGH
Network 		The iSNS Server service in Microsoft Windows Server 2008 SP2 and R2, Windows Server 2012 Gold and R2, and Windows Server 2016 allows remote attackers to issue malicious requests via an integer overfl… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-0104 cpe:2.3:o:microsoft:windows_server_2016:-:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*
cpe:2.3:o:microsoft:wind… 		2024-11-21 12:02
2017-03-17 		Show GitHub Exploit DB Packet Storm
4160 4.3
4.3 		MEDIUM
Network 		Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka… CWE-200
Information Exposure 		CVE-2017-0128 cpe:2.3:o:microsoft:windows_server_2008:r2:sp1 2024-11-21 12:02
2017-03-17 		Show GitHub Exploit DB Packet Storm