| Windows Server | Number Of NVD | 5091 | CRITICAL | 122 | HIGH | 3461 | MEDIUM | 1438 | LOW | 70 |
| URL | https://www.microsoft.com/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | Server products offered by Microsoft. For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support). You may need to deploy the latest updates to be eligible for support. For some products, the support organization may be less than 10 years. For consumer and multimedia products, five years of mainstream support at the supported Service Pack level. The above text is excerpted from Microsoft's Fixed Lifecycle Policy. |
||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://support.microsoft.com//lifecycle/search | ||
| 2 | https://www.microsoft.com/ja-jp/cloud-platform/windows-server | ||
| 3 | https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy | ||
| 4 | https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 4271 | Windows Server 2022 | 21H2 | Nov. 2, 2021 | Nov. 2, 2021 | Oct. 13, 2026 | Oct. 14, 2031 | 53 | 1279 | 421 | 5 | |
| 4272 | Windows Server 2019 | 1809 | Oct. 2, 2018 | Nov. 13, 2018 | Jan. 9, 2024 | Jan. 9, 2029 | 94 | 2460 | 885 | 11 | |
| 4273 | Windows Server 2016 | 20H2 | Oct. 20, 2020 | Oct. 15, 2016 | Jan. 11, 2022 | Jan. 12, 2027 | 103 | 2553 | 1010 | 15 | |
| 4274 | Windows Server 2012 | Oct. 30, 2012 | Oct. 30, 2012 | Oct. 9, 2018 | Oct. 10, 2023 | 94 | 2178 | 911 | 50 | ||
| 4275 | Windows Server 2008 R2( Service Pack 1適用) | Feb. 22, 2011 | Jan. 14, 2020 | 0 | 0 | 0 | 0 | ||||
| 4276 | Windows Server 2008(Service Pack 2適用) | April 29, 2009 | Jan. 14, 2020 | 0 | 0 | 0 | 0 | ||||
| 4277 | Microsoft Windows Server 2003(Service Pack 2適用) | May 28, 2003 | July 13, 2010 | July 14, 2015 | 0 | 128 | 53 | 15 | |||
| 4278 | Microsoft Windows Storage Server 2003 | May 5, 2003 | Oct. 11, 2011 | Oct. 9, 2016 | 0 | 128 | 53 | 15 | |||
| 4279 | Microsoft Windows 2000(Service Pack 4適用) | March 31, 2000 | June 30, 2005 | July 13, 2010 | 2 | 40 | 19 | 0 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 4271 |
7.8 7.2 |
HIGH
Local |
The Print Spooler service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2016-3239 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind… |
2024-11-21 11:49 2016-07-13 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4272 |
8.1 9.3 |
HIGH
Network |
The Print Spooler service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511… |
CWE-254
7PK - Security Features |
CVE-2016-3238 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind… |
2024-11-21 11:49 2016-07-13 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4273 |
5.0 2.1 |
MEDIUM
Local |
The Virtual PCI (VPCI) virtual service provider in Microsoft Windows Server 2012 Gold and R2 allows local users to obtain sensitive information from uninitialized memory locations via a crafted appli… |
CWE-200
Information Exposure |
CVE-2016-3232 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:win… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4274 |
5.0 1.9 |
MEDIUM
Local |
The Search component in Microsoft Windows 7, Windows Server 2008 R2 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to cause a denia… |
CWE-20
Improper Input Validation |
CVE-2016-3230 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4275 |
8.8 9.0 |
HIGH
Network |
Microsoft Windows Server 2008 SP2 and R2 SP1 and Windows Server 2012 Gold and R2 allow remote authenticated users to execute arbitrary code via a crafted NetLogon request, aka "Windows Netlogon Memor… |
CWE-20
Improper Input Validation |
CVE-2016-3228 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:win… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4276 |
9.8 10.0 |
CRITICAL
Network |
The Web Proxy Auto Discovery (WPAD) protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT… |
CWE-19
Data Processing Errors |
CVE-2016-3236 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4277 |
9.8 10.0 |
CRITICAL
Network |
Use-after-free vulnerability in the DNS Server component in Microsoft Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted requests, aka "Windows DNS Server U… |
NVD-CWE-Other
|
CVE-2016-3227 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:win… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4278 |
6.5 4.0 |
MEDIUM
Network |
Active Directory in Microsoft Windows Server 2008 R2 SP1 and Server 2012 Gold and R2 allows remote authenticated users to cause a denial of service (service hang) by creating many machine accounts, a… |
CWE-284
Improper Access Control |
CVE-2016-3226 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:win… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4279 |
7.8 6.9 |
HIGH
Local |
The SMB server component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 … |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2016-3225 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm | ||||
| 4280 |
8.1 9.3 |
HIGH
Network |
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle LDAP authenticatio… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2016-3223 |
cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind… |
2024-11-21 11:49 2016-06-16 |
Show | GitHub Exploit DB Packet Storm |