CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft » Windows Server 2016 » * * * : Security Vulnerabilities (Bypass)

Cpe Name:cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-21913 863 Bypass 2022-01-11 2022-01-19
5.0
None Remote Low Not required Partial None None
Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass.
2 CVE-2022-21905 Bypass 2022-01-11 2022-01-19
4.9
None Local Network Medium ??? Partial Partial Partial
Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21900.
3 CVE-2022-21900 Bypass 2022-01-11 2022-01-19
3.8
None Local Network Medium ??? None Partial Partial
Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21905.
4 CVE-2022-21894 Bypass 2022-01-11 2022-01-19
4.9
None Local Low Not required None Complete None
Secure Boot Security Feature Bypass Vulnerability.
5 CVE-2021-41338 Bypass 2021-10-13 2021-10-19
2.1
None Local Low Not required None Partial None
Windows AppContainer Firewall Rules Security Feature Bypass Vulnerability
6 CVE-2021-41337 Bypass 2021-10-13 2021-10-19
4.0
None Remote Low ??? None Partial None
Active Directory Security Feature Bypass Vulnerability
7 CVE-2021-40460 Bypass 2021-10-13 2021-10-19
4.0
None Remote Low ??? None Partial None
Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
8 CVE-2021-38632 Bypass 2021-09-15 2021-09-27
2.1
None Local Low Not required Partial None None
BitLocker Security Feature Bypass Vulnerability
9 CVE-2021-34446 Bypass 2021-07-16 2021-07-22
6.8
None Remote Medium Not required Partial Partial Partial
Windows HTML Platforms Security Feature Bypass Vulnerability
10 CVE-2021-33786 863 Bypass 2021-07-14 2021-07-19
6.5
None Remote Low ??? Partial Partial Partial
Windows LSA Security Feature Bypass Vulnerability
11 CVE-2021-33781 Bypass 2021-07-14 2021-07-17
5.5
None Remote Low ??? Partial Partial None
Azure AD Security Feature Bypass Vulnerability
12 CVE-2021-33779 Bypass 2021-07-14 2021-07-17
5.5
None Remote Low ??? Partial Partial None
Windows ADFS Security Feature Bypass Vulnerability
13 CVE-2021-33757 Bypass 2021-07-14 2021-07-17
7.5
None Remote Low Not required Partial Partial Partial
Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability
14 CVE-2021-31971 Bypass 2021-06-08 2021-06-11
6.8
None Remote Medium Not required Partial Partial Partial
Windows HTML Platform Security Feature Bypass Vulnerability
15 CVE-2021-31970 Bypass 2021-06-08 2021-09-13
2.1
None Local Low Not required None None Partial
Windows TCP/IP Driver Security Feature Bypass Vulnerability
16 CVE-2021-31962 Bypass 2021-06-08 2021-06-17
7.5
None Remote Low Not required Partial Partial Partial
Kerberos AppContainer Security Feature Bypass Vulnerability
17 CVE-2021-28447 Bypass 2021-04-13 2021-09-14
2.1
None Local Low Not required None Partial None
Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability This CVE ID is unique from CVE-2021-27094.
18 CVE-2021-28444 Bypass 2021-04-13 2021-04-21
4.0
None Remote Low ??? None Partial None
Windows Hyper-V Security Feature Bypass Vulnerability
19 CVE-2021-28316 Bypass 2021-04-13 2021-04-15
2.1
None Local Low Not required Partial None None
Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability
20 CVE-2021-27094 Bypass 2021-04-13 2021-09-14
2.1
None Local Low Not required None Partial None
Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability This CVE ID is unique from CVE-2021-28447.
21 CVE-2021-26892 Bypass 2021-03-11 2021-03-23
2.1
None Local Low Not required None None Partial
Windows Extensible Firmware Interface Security Feature Bypass Vulnerability
22 CVE-2021-24082 Bypass 2021-02-25 2021-03-04
4.0
None Remote Low ??? Partial None None
Microsoft.PowerShell.Utility Module WDAC Security Feature Bypass Vulnerability
23 CVE-2021-1684 Bypass 2021-01-12 2021-01-20
2.1
None Local Low Not required Partial None None
Windows Bluetooth Security Feature Bypass Vulnerability This CVE ID is unique from CVE-2021-1638, CVE-2021-1683.
24 CVE-2021-1683 Bypass 2021-01-12 2021-01-20
2.1
None Local Low Not required Partial None None
Windows Bluetooth Security Feature Bypass Vulnerability This CVE ID is unique from CVE-2021-1638, CVE-2021-1684.
25 CVE-2021-1678 Bypass 2021-01-12 2021-01-20
5.0
None Remote Low Not required Partial None None
NTLM Security Feature Bypass Vulnerability
26 CVE-2021-1674 Bypass 2021-01-12 2021-01-20
6.5
None Remote Low ??? Partial Partial Partial
Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability
27 CVE-2021-1669 863 Bypass 2021-01-12 2021-01-20
6.5
None Remote Low ??? Partial Partial Partial
Windows Remote Desktop Security Feature Bypass Vulnerability
28 CVE-2020-17162 Bypass 2021-02-25 2021-03-03
6.5
None Remote Low ??? Partial Partial Partial
Microsoft Windows Security Feature Bypass Vulnerability
29 CVE-2020-17099 Bypass 2020-12-10 2021-03-03
4.6
None Local Low Not required Partial Partial Partial
Windows Lock Screen Security Feature Bypass Vulnerability
30 CVE-2020-17049 Bypass 2020-11-11 2021-11-30
9.0
None Remote Low ??? Complete Complete Complete
Kerberos Security Feature Bypass Vulnerability
31 CVE-2020-17040 287 Bypass 2020-11-11 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
Windows Hyper-V Security Feature Bypass Vulnerability
32 CVE-2020-16996 Bypass 2020-12-10 2021-03-03
4.0
None Remote Low ??? None Partial None
Kerberos Security Feature Bypass Vulnerability
33 CVE-2020-16933 755 Bypass 2020-10-16 2020-10-21
6.8
None Remote Medium Not required Partial Partial Partial
A security feature bypass vulnerability exists in Microsoft Word software when it fails to properly handle .LNK files, aka 'Microsoft Word Security Feature Bypass Vulnerability'.
34 CVE-2020-16910 281 Bypass 2020-10-16 2020-10-21
4.3
None Remote Medium Not required None Partial None
A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.To exploit this vulnerability, an attacker could run a specially crafted application to bypass Unified Extensible Firmware Interface (UEFI) variable security in Windows.The security update addresses the vulnerability by correcting security feature behavior to enforce permissions., aka 'Windows Security Feature Bypass Vulnerability'.
35 CVE-2020-15707 362 Exec Code Overflow Bypass 2020-07-29 2021-09-13
4.4
None Local Medium Not required Partial Partial Partial
Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.
36 CVE-2020-15706 362 Exec Code Bypass 2020-07-29 2021-05-01
4.4
None Local Medium Not required Partial Partial Partial
GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.
37 CVE-2020-15705 347 Bypass 2020-07-29 2021-09-21
4.4
None Local Medium Not required Partial Partial Partial
GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.
38 CVE-2020-1259 522 Bypass 2020-06-09 2021-07-21
4.0
None Remote Low ??? Partial None None
A security feature bypass vulnerability exists when Windows Host Guardian Service improperly handles hashes recorded and logged, aka 'Windows Host Guardian Service Security Feature Bypass Vulnerability'.
39 CVE-2020-1241 20 Bypass 2020-06-09 2021-07-21
6.8
None Remote Medium Not required Partial Partial Partial
A security feature bypass vulnerability exists when Windows Kernel fails to properly sanitize certain parameters.To exploit the vulnerability, a locally-authenticated attacker could attempt to run a specially crafted application on a targeted system.The update addresses the vulnerability by correcting how Windows Kernel handles parameter sanitization., aka 'Windows Kernel Security Feature Bypass Vulnerability'.
40 CVE-2020-1113 295 Bypass 2020-05-21 2020-05-27
9.3
None Remote Medium Not required Complete Complete Complete
A security feature bypass vulnerability exists in Microsoft Windows when the Task Scheduler service fails to properly verify client connections over RPC, aka 'Windows Task Scheduler Security Feature Bypass Vulnerability'.
41 CVE-2020-0951 732 Bypass 2020-09-11 2021-07-21
7.2
None Local Low Not required Complete Complete Complete
A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Security Feature Bypass Vulnerability'.
42 CVE-2020-0689 20 Bypass 2020-02-11 2021-07-21
4.6
None Local Low Not required Partial Partial Partial
A security feature bypass vulnerability exists in secure boot, aka 'Microsoft Secure Boot Security Feature Bypass Vulnerability'.
43 CVE-2019-1488 Bypass 2019-12-10 2020-08-24
2.1
None Local Low Not required None Partial None
A security feature bypass vulnerability exists when Microsoft Defender improperly handles specific buffers, aka 'Microsoft Defender Security Feature Bypass Vulnerability'.
44 CVE-2019-1424 Bypass 2019-11-12 2020-08-24
6.8
None Remote Medium Not required Partial Partial Partial
A security feature bypass vulnerability exists when Windows Netlogon improperly handles a secure communications channel, aka 'NetLogon Security Feature Bypass Vulnerability'.
45 CVE-2019-1384 522 Bypass 2019-11-12 2020-08-24
6.5
None Remote Low ??? Partial Partial Partial
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request, aka 'Microsoft Windows Security Feature Bypass Vulnerability'.
46 CVE-2019-1166 354 Bypass 2019-10-10 2020-08-24
4.3
None Remote Medium Not required None Partial None
A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka 'Windows NTLM Tampering Vulnerability'.
47 CVE-2019-1163 354 Bypass 2019-08-14 2020-08-24
4.3
None Remote Medium Not required None Partial None
A security feature bypass exists when Windows incorrectly validates CAB file signatures, aka 'Windows File Signature Security Feature Bypass Vulnerability'.
48 CVE-2019-1126 307 Bypass 2019-07-15 2020-08-24
5.0
None Remote Low Not required Partial None None
A security feature bypass vulnerability exists in Active Directory Federation Services (ADFS) which could allow an attacker to bypass the extranet lockout policy.To exploit this vulnerability, an attacker could run a specially crafted application, which would allow an attacker to launch a password brute-force attack or cause account lockouts in Active Directory.This security update corrects how ADFS handles external authentication requests., aka 'ADFS Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0975.
49 CVE-2019-1040 Bypass 2019-06-12 2020-08-24
4.3
None Remote Medium Not required None Partial None
A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka 'Windows NTLM Tampering Vulnerability'.
50 CVE-2019-1019 200 Bypass +Info 2019-06-12 2020-08-24
6.0
None Remote Medium ??? Partial Partial Partial
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request, aka 'Microsoft Windows Security Feature Bypass Vulnerability'.
Total number of vulnerabilities : 92   Page : 1 (This Page)2
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.