Summary
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2020-11-11 |
| Product | Windows Server 2016 | Last view | 2021-11-10 |
| Version | 20h2 | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:microsoft:windows_server_2016 | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 6.1 | 2021-11-10 | CVE-2021-42288 | Windows Hello Security Feature Bypass Vulnerability |
| 7.8 | 2021-11-10 | CVE-2021-42280 | Windows Feedback Hub Elevation of Privilege Vulnerability |
| 7.5 | 2021-11-10 | CVE-2021-42279 | Chakra Scripting Engine Memory Corruption Vulnerability |
| 8.8 | 2021-11-10 | CVE-2021-42278 | Active Directory Domain Services Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-42282, CVE-2021-42287, CVE-2021-42291. |
| 7.8 | 2021-11-10 | CVE-2021-42277 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability |
| 7.8 | 2021-11-10 | CVE-2021-42276 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability |
| 8.8 | 2021-11-10 | CVE-2021-42275 | Microsoft COM for Windows Remote Code Execution Vulnerability |
| 6.5 | 2021-11-10 | CVE-2021-42274 | Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability |
| 7.8 | 2021-11-10 | CVE-2021-41379 | Windows Installer Elevation of Privilege Vulnerability |
| 8.8 | 2021-11-10 | CVE-2021-41378 | Windows NTFS Remote Code Execution Vulnerability |
| 7.8 | 2021-11-10 | CVE-2021-41377 | Windows Fast FAT File System Driver Elevation of Privilege Vulnerability |
| 4.4 | 2021-11-10 | CVE-2021-41371 | Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-38631. |
| 7.8 | 2021-11-10 | CVE-2021-41370 | NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41367, CVE-2021-42283. |
| 7.8 | 2021-11-10 | CVE-2021-41367 | NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-41370, CVE-2021-42283. |
| 7.8 | 2021-11-10 | CVE-2021-41366 | Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability |
| 7.5 | 2021-11-10 | CVE-2021-41356 | Windows Denial of Service Vulnerability |
| 8.8 | 2021-11-10 | CVE-2021-38666 | Remote Desktop Client Remote Code Execution Vulnerability |
| 4.4 | 2021-11-10 | CVE-2021-38631 | Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-41371. |
| 7.8 | 2021-11-10 | CVE-2021-36957 | Windows Desktop Bridge Elevation of Privilege Vulnerability |
| 9 | 2021-11-10 | CVE-2021-26443 | Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability |
| 3.5 | 2021-10-13 | CVE-2021-41361 | Active Directory Federation Server Spoofing Vulnerability |
| 7.8 | 2021-10-13 | CVE-2021-41357 | Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40449, CVE-2021-40450. |
| 7.8 | 2021-10-13 | CVE-2021-41347 | Windows AppX Deployment Service Elevation of Privilege Vulnerability |
| 7.8 | 2021-10-13 | CVE-2021-41346 | Console Window Host Security Feature Bypass Vulnerability |
| 7.8 | 2021-10-13 | CVE-2021-41345 | Storage Spaces Controller Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26441, CVE-2021-40478, CVE-2021-40488, CVE-2021-40489. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 80% (173) | CWE-269 | Improper Privilege Management |
| 12% (26) | CWE-200 | Information Exposure |
| 2% (5) | CWE-787 | Out-of-bounds Write |
| 1% (3) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 0% (1) | CWE-639 | Access Control Bypass Through User-Controlled Key |
| 0% (1) | CWE-416 | Use After Free |
| 0% (1) | CWE-290 | Authentication Bypass by Spoofing |
| 0% (1) | CWE-190 | Integer Overflow or Wraparound |
| 0% (1) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 0% (1) | CWE-78 | Improper Sanitization of Special Elements used in an OS Command ('O... |
| 0% (1) | CWE-77 | Improper Sanitization of Special Elements used in a Command ('Comma... |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56856 - Type : OS-WINDOWS - Revision : 1 |
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56855 - Type : OS-WINDOWS - Revision : 1 |
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56854 - Type : OS-WINDOWS - Revision : 1 |
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56853 - Type : OS-WINDOWS - Revision : 1 |
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56852 - Type : OS-WINDOWS - Revision : 1 |
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56851 - Type : OS-WINDOWS - Revision : 1 |
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56850 - Type : OS-WINDOWS - Revision : 1 |
| 2021-02-11 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 56849 - Type : OS-WINDOWS - Revision : 1 |
| 2021-01-12 | Microsoft Windows SMB2 SET_INFO information disclosure attempt RuleID : 56571 - Type : OS-WINDOWS - Revision : 1 |
| 2021-01-08 | Microsoft Windows SMB authenticated remote code execution attempt RuleID : 56562 - Type : OS-WINDOWS - Revision : 1 |
| 2021-01-08 | Microsoft Windows SMB authenticated remote code execution attempt RuleID : 56561 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-12 | Microsoft Windows NFS v3 Server heap overflow denial of service attempt RuleID : 56312 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-12 | Microsoft Windows NFS v3 Server heap overflow denial of service attempt RuleID : 56311 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-12 | Windows Network File System denial of service attempt RuleID : 56309 - Type : PROTOCOL-RPC - Revision : 1 |
| 2020-12-10 | Microsoft Windows NFS read procedure remote code execution attempt RuleID : 56302 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows NFS read procedure remote code execution attempt RuleID : 56301 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Common Log Files System driver privilege escalation attempt RuleID : 56296 - Type : FILE-OTHER - Revision : 1 |
| 2020-12-10 | Microsoft Windows Common Log Files System driver privilege escalation attempt RuleID : 56295 - Type : FILE-OTHER - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k privilege escalation attempt RuleID : 56264 - Type : FILE-EXECUTABLE - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k privilege escalation attempt RuleID : 56263 - Type : FILE-EXECUTABLE - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k elevation of privilege attempt RuleID : 56262 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k elevation of privilege attempt RuleID : 56261 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k DirectComposition privilege escalation attempt RuleID : 56260 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k DirectComposition privilege escalation attempt RuleID : 56259 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows DirectX graphics kernel subsystem privilege escalation attempt RuleID : 56255 - Type : OS-WINDOWS - Revision : 1 |
