Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Windows Server Number Of NVD 5229 CRITICAL 126 HIGH 3568 MEDIUM 1464 LOW 71
URL https://www.microsoft.com/
Explanation Server products offered by Microsoft.

For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support).
You may need to deploy the latest updates to be eligible for support.
For some products, the support organization may be less than 10 years.

For consumer and multimedia products, five years of mainstream support at the supported Service Pack level.

The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag
  • 商用ライセンス有り
  • Microsoft

Add Information URL
No Type Name URL
1 https://support.microsoft.com//lifecycle/search
2 https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3 https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4 https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
5221 Windows Server 2022 21H2 Nov. 2, 2021 Nov. 2, 2021 Oct. 13, 2026 Oct. 14, 2031 60 1398 449 6
5222 Windows Server 2019 1809 Oct. 2, 2018 Nov. 13, 2018 Jan. 9, 2024 Jan. 9, 2029 98 2567 911 12
5223 Windows Server 2016 20H2 Oct. 20, 2020 Oct. 15, 2016 Jan. 11, 2022 Jan. 12, 2027 107 2641 1033 16
5224 Windows Server 2012 Oct. 30, 2012 Oct. 30, 2012 Oct. 9, 2018 Oct. 10, 2023 98 2256 929 51
5225 Windows Server 2008 R2( Service Pack 1適用) Feb. 22, 2011 Jan. 14, 2020 0 0 0 0
5226 Windows Server 2008(Service Pack 2適用) April 29, 2009 Jan. 14, 2020 0 0 0 0
5227 Microsoft Windows Server 2003(Service Pack 2適用) May 28, 2003 July 13, 2010 July 14, 2015 0 128 53 15
5228 Microsoft Windows Storage Server 2003 May 5, 2003 Oct. 11, 2011 Oct. 9, 2016 0 128 53 15
5229 Microsoft Windows 2000(Service Pack 4適用) March 31, 2000 June 30, 2005 July 13, 2010 2 40 19 0
5230 Windows Server 2025 0 0 0 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
5221 7.8
4.6
HIGH
Local
Windows 2000 allows local users to prevent the application of new group policy settings by opening Group Policy files with exclusive-read access. CWE-667
 Improper Locking
CVE-2002-0051 cpe:2.3:o:microsoft:windows_2000:-:* 2024-02-9 04:24
2002-04-4
Show GitHub Exploit DB Packet Storm
5222 -
7.5
HIGH SMTP service in (1) Microsoft Windows 2000 and (2) Internet Mail Connector (IMC) in Exchange Server 5.5 does not properly handle responses to NTLM authentication, which allows remote attackers to per… CWE-294
Authentication Bypass by Capture-replay 
CVE-2002-0054 cpe:2.3:o:microsoft:windows_2000:-:sp2
cpe:2.3:o:microsoft:windows_2000:-:sp1
cpe:2.3:o:microsoft:windows_2000:-:*
2020-04-9 22:46
2002-03-8
Show GitHub Exploit DB Packet Storm
5223 -
5.0
MEDIUM SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request. CWE-669
 Incorrect Resource Transfer Between Spheres
CVE-2002-0055 cpe:2.3:o:microsoft:windows_2000:-:sp2
cpe:2.3:o:microsoft:windows_2000:-:sp1
cpe:2.3:o:microsoft:windows_2000:-:*
2020-04-9 22:46
2002-03-8
Show GitHub Exploit DB Packet Storm
5224 7.5
5.0
HIGH
Network
Macintosh clients, when using NT file system volumes on Windows 2000 SP1, create subdirectories and automatically modify the inherited NTFS permissions, which may cause the directories to have less r… CWE-281
 Improper Preservation of Permissions
CVE-2001-1515 cpe:2.3:o:microsoft:windows_2000:-:sp1 2024-01-26 06:11
2001-12-31
Show GitHub Exploit DB Packet Storm
5225 -
5.0
MEDIUM Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and earlier, (2) Microsoft SQL Server 2000 and earlier, (3) Windows NT 4.0, and (4) Windows 2000 allow remote attackers to cause a… CWE-20
 Improper Input Validation 
CVE-2001-0509 cpe:2.3:o:microsoft:windows_2000:-:- 2020-04-2 21:56
2001-09-20
Show GitHub Exploit DB Packet Storm
5226 7.5
5.0
HIGH
Network
By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name servers, which allows remote attackers to poison the DNS cache via spoofed DNS re… CWE-346
 Origin Validation Error
CVE-2001-1452 cpe:2.3:o:microsoft:windows_2000:-:* 2024-02-9 05:47
2001-08-31
Show GitHub Exploit DB Packet Storm
5227 -
5.0
MEDIUM Windows 2000 Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros to various TCP and UDP ports, which significantly increases the CPU utilization. NVD-CWE-Other
CVE-2000-0580 cpe:2.3:o:microsoft:windows_2000:2000.2072:*
cpe:2.3:o:microsoft:windows_2000:2000.0.2195:*
2023-11-7 10:55
2000-06-30
Show GitHub Exploit DB Packet Storm
5228 -
5.0
MEDIUM Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash. NVD-CWE-Other
CVE-2000-0581 cpe:2.3:o:microsoft:windows_2000:2000.2072:*
cpe:2.3:o:microsoft:windows_2000:2000.2031:*
cpe:2.3:o:microsoft:win…
2023-11-7 10:55
2000-06-30
Show GitHub Exploit DB Packet Storm
5229 9.8
7.5
CRITICAL
Network
The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which causes Windows to accept DNS updates from hosts th… CWE-346
 Origin Validation Error
CVE-2000-1218 cpe:2.3:o:microsoft:windows_2000:-:* 2024-02-9 05:47
2000-04-14
Show GitHub Exploit DB Packet Storm