This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2012-09-26
Product Windows Server 2012 Last view 2021-07-16
Version r2 Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* 1631
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* 1546
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* 100
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:standard:*:*:* 36
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:essentials:*:*:* 28
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:datacenter:*:*:* 28
cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:* 25
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:-:*:-:* 16
cpe:2.3:o:microsoft:windows_server_2012:-:r2:*:*:*:*:*:* 11
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:x64:*:* 8
cpe:2.3:o:microsoft:windows_server_2012:*:gold:*:*:*:*:*:* 2
cpe:2.3:o:microsoft:windows_server_2012:*:r2:*:*:*:*:*:* 1
cpe:2.3:o:microsoft:windows_server_2012:r2:sp1:*:*:*:*:*:* 1

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
7.8 2021-07-16 CVE-2021-34460

Storage Spaces Controller Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33751, CVE-2021-34510, CVE-2021-34512, CVE-2021-34513.

7.8 2021-07-16 CVE-2021-34459

Windows AppContainer Elevation Of Privilege Vulnerability

5.5 2021-07-16 CVE-2021-34457

Windows Remote Access Connection Manager Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-33763, CVE-2021-34454.

7.8 2021-07-16 CVE-2021-34456

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33761, CVE-2021-33773, CVE-2021-34445.

7.8 2021-07-16 CVE-2021-34455

Windows File History Service Elevation of Privilege Vulnerability

5.5 2021-07-16 CVE-2021-34454

Windows Remote Access Connection Manager Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-33763, CVE-2021-34457.

8.8 2021-07-16 CVE-2021-34448

Scripting Engine Memory Corruption Vulnerability

8.8 2021-07-16 CVE-2021-34447

Windows MSHTML Platform Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-34497.

8.8 2021-07-16 CVE-2021-34446

Windows HTML Platforms Security Feature Bypass Vulnerability

6.5 2021-07-16 CVE-2021-34444

Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-33745, CVE-2021-34442, CVE-2021-34499.

7.5 2021-07-16 CVE-2021-34442

Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-33745, CVE-2021-34444, CVE-2021-34499.

7.8 2021-07-16 CVE-2021-34441

Microsoft Windows Media Foundation Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-34439, CVE-2021-34503.

5.5 2021-07-16 CVE-2021-34440

GDI+ Information Disclosure Vulnerability

8.8 2021-07-14 CVE-2021-34525

Windows DNS Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-33746, CVE-2021-33754, CVE-2021-33780, CVE-2021-34494.

7.8 2021-07-14 CVE-2021-34516

Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-34449.

7.8 2021-07-14 CVE-2021-34514

Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-31979, CVE-2021-33771.

7.8 2021-07-14 CVE-2021-34511

Windows Installer Elevation of Privilege Vulnerability

6.5 2021-07-14 CVE-2021-34507

Windows Remote Assistance Information Disclosure Vulnerability

7.8 2021-07-14 CVE-2021-34504

Windows Address Book Remote Code Execution Vulnerability

7.7 2021-07-14 CVE-2021-34500

Windows Kernel Memory Information Disclosure Vulnerability

6.5 2021-07-14 CVE-2021-34499

Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-33745, CVE-2021-34442, CVE-2021-34444.

7.8 2021-07-14 CVE-2021-34498

Windows GDI Elevation of Privilege Vulnerability

8.8 2021-07-14 CVE-2021-34497

Windows MSHTML Platform Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-34447.

5.5 2021-07-14 CVE-2021-34496

Windows GDI Information Disclosure Vulnerability

8.8 2021-07-14 CVE-2021-34494

Windows DNS Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-33746, CVE-2021-33754, CVE-2021-33780, CVE-2021-34525.

CWE : Common Weakness Enumeration

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
%idName
22% (301) CWE-269 Improper Privilege Management
22% (301) CWE-200 Information Exposure
10% (139) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
10% (134) CWE-20 Improper Input Validation
9% (130) CWE-264 Permissions, Privileges, and Access Controls
2% (29) CWE-787 Out-of-bounds Write
2% (28) CWE-94 Failure to Control Generation of Code ('Code Injection')
1% (21) CWE-404 Improper Resource Shutdown or Release
1% (19) CWE-665 Improper Initialization
1% (17) CWE-284 Access Control (Authorization) Issues
1% (17) CWE-281 Improper Preservation of Permissions
1% (15) CWE-19 Data Handling
1% (14) CWE-611 Information Leak Through XML External Entity File Disclosure
1% (14) CWE-254 Security Features
0% (13) CWE-416 Use After Free
0% (11) CWE-125 Out-of-bounds Read
0% (10) CWE-399 Resource Management Errors
0% (10) CWE-59 Improper Link Resolution Before File Access ('Link Following')
0% (9) CWE-362 Race Condition
0% (6) CWE-287 Improper Authentication
0% (5) CWE-476 NULL Pointer Dereference
0% (5) CWE-426 Untrusted Search Path
0% (5) CWE-310 Cryptographic Issues
0% (4) CWE-415 Double Free
0% (4) CWE-401 Failure to Release Memory Before Removing Last Reference ('Memory L...

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:15847 TrueType Font Parsing Vulnerability - MS12-075
oval:org.mitre.oval:def:15975 Windows Briefcase Integer Underflow Vulnerability - MS12-072
oval:org.mitre.oval:def:15528 Windows Briefcase Integer Overflow Vulnerability - MS12-072
oval:org.mitre.oval:def:16117 Revoked Certificate Bypass Vulnerability - MS12-083
oval:org.mitre.oval:def:16067 OpenType Font Parsing Vulnerability - MS12-078
oval:org.mitre.oval:def:16429 MSXML Integer Truncation Vulnerability - MS13-002
oval:org.mitre.oval:def:15458 MSXML XSLT Vulnerability - MS13-002
oval:org.mitre.oval:def:16326 Win32k Improper Message Handling Vulnerability - MS13-005
oval:org.mitre.oval:def:16273 Microsoft SSL Version 3 and TLS Protocol Security Feature Bypass Vulnerabilit...
oval:org.mitre.oval:def:16373 TCP FIN WAIT Vulnerability - MS13-018
oval:org.mitre.oval:def:16388 Microsoft NFS Server Denial Of Service Vulnerability - MS13-014
oval:org.mitre.oval:def:16441 Microsoft kernel-mode drivers privilege elevation vulnerability (CVE-2013-128...
oval:org.mitre.oval:def:16591 Microsoft kernel-mode drivers privilege elevation vulnerability (CVE-2013-128...
oval:org.mitre.oval:def:16498 Microsoft kernel-mode drivers privilege elevation vulnerability (CVE-2013-128...
oval:org.mitre.oval:def:16563 Microsoft Windows Kernel-Mode Driver privilege elevation vulnerability (CVE-2...
oval:org.mitre.oval:def:16455 Kernel Race Condition Vulnerability - CVE-2013-1284 (MS13-031)
oval:org.mitre.oval:def:16575 Microsoft Windows Kernel-Mode Driver privilege elevation vulnerability (CVE-2...
oval:org.mitre.oval:def:16257 Kernel Race Condition Vulnerability - CVE-2013-1294 (MS13-031)
oval:org.mitre.oval:def:16088 Vulnerability in HTTP.sys could allow denial of service - MS13-039
oval:org.mitre.oval:def:16332 DirectX Graphics Kernel Subsystem Double Fetch Vulnerability - MS13-046
oval:org.mitre.oval:def:16091 Win32k Window Handle Vulnerability - MS13-046
oval:org.mitre.oval:def:17360 Win32k Read AV Vulnerability - CVE-2013-3660 (MS13-053)
oval:org.mitre.oval:def:16837 Vulnerability in Windows Print Spooler Components Could Allow Elevation of Pr...
oval:org.mitre.oval:def:17353 Win32k Memory Allocation Vulnerability- CVE-2013-1300 (MS13-053)
oval:org.mitre.oval:def:17273 Win32k Dereference Vulnerability - CVE-2013-1340 (MS13-053)

SAINT Exploits

Description Link
Windows OLE Automation Array command execution More info here
Windows RRAS Service Remote Code Execution Vulnerability More info here
Windows OLE Package Manager CPackage::DoVerb() INF File Download Vulnerability More info here
Microsoft Word and WordPad RTF HTA handler command execution More info here

ExploitDB Exploits

id Description
35236 MS14-064 Microsoft Windows OLE Package Manager Code Execution
35235 MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Python
35230 Internet Explorer < 11 - OLE Automation Array Remote Code Execution (MSF)
35229 Internet Explorer <11 - OLE Automation Array Remote Code Execution
35216 MS Office 2007 and 2010 - OLE Arbitrary Command Execution
35101 Windows TrackPopupMenu Win32k NULL Pointer Dereference
35055 Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060)
35020 MS14-060 Microsoft Windows OLE Package Manager Code Execution
35019 Windows OLE Package Manager SandWorm Exploit
33213 Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)
30397 Windows Kernel win32k.sys - Integer Overflow (MS13-101)
27050 DirectShow Arbitrary Memory Overwrite Vulnerability (MS13-056)
26554 Windows EPATHOBJ::pprFlattenRec Local Privilege Escalation
24485 MS13-005 HWND_BROADCAST PoC

OpenVAS Exploits

id Description
2012-12-12 Name : Microsoft Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (...
File : nvt/secpod_ms12-078.nasl
2012-12-12 Name : Microsoft Windows IP-HTTPS Component Security Feature Bypass Vulnerability (2...
File : nvt/secpod_ms12-083.nasl
2012-11-14 Name : Microsoft Windows Shell Remote Code Execution Vulnerabilities (2727528)
File : nvt/secpod_ms12-072.nasl
2012-11-14 Name : Microsoft Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (...
File : nvt/secpod_ms12-075.nasl
2012-09-28 Name : Google Chrome Windows Kernel Memory Corruption Vulnerability
File : nvt/gb_google_chrome_mem_crptn_vuln_win.nasl

Information Assurance Vulnerability Management (IAVM)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2015-A-0216 Multiple Vulnerabilities in Microsoft Windows Journal (MS15-098)
Severity: Category II - VMSKEY: V0061393
2015-A-0215 Multiple Vulnerabilities in Microsoft Windows Task Management (MS15-102)
Severity: Category II - VMSKEY: V0061391
2015-A-0212 Multiple Vulnerabilities in Microsoft Graphics Component (MS15-097)
Severity: Category II - VMSKEY: V0061385
2015-B-0111 Microsoft Hyper-V Security Bypass Vulnerability (MS15-105)
Severity: Category II - VMSKEY: V0061371
2015-B-0110 Microsoft Active Directory Service Denial of Service Vulnerability (MS15-096)
Severity: Category II - VMSKEY: V0061369
2015-A-0190 Multiple Vulnerabilities in Microsoft Remote Desktop Protocol (RDP) (MS15-082)
Severity: Category II - VMSKEY: V0061299
2015-B-0096 Microsoft WebDAV Information Disclosure Vulnerability (MS15-089)
Severity: Category II - VMSKEY: V0061285
2015-A-0188 Cumulative Security Update for Microsoft Internet Explorer (MS15-079)
Severity: Category I - VMSKEY: V0061297
2015-A-0192 Microsoft Windows Mount Manager Privilege Escalation Vulnerability (MS15-085)
Severity: Category I - VMSKEY: V0061303
2015-A-0193 Multiple Privilege Escalation Vulnerabilities in Microsoft Windows (MS15-090)
Severity: Category II - VMSKEY: V0061305
2015-A-0194 Multiple Vulnerabilities in Microsoft Office (MS15-081)
Severity: Category II - VMSKEY: V0061307
2015-A-0196 Multiple Vulnerabilities in Microsoft Graphics Component (MS15-080)
Severity: Category II - VMSKEY: V0061311
2015-A-0197 Microsoft Command Line Parameter Information Disclosure Vulnerability (MS15-088)
Severity: Category II - VMSKEY: V0061313
2015-A-0167 Multiple Vulnerabilities in Microsoft Windows (MS15-069)
Severity: Category II - VMSKEY: V0061129
2015-B-0091 Multiple Vulnerabilities in Microsoft Hyper-V (MS15-068)
Severity: Category II - VMSKEY: V0061119
2015-A-0173 Microsoft Windows Netlogon Privilege Escalation Vulnerability (MS15-071)
Severity: Category II - VMSKEY: V0061111
2015-A-0170 Microsoft Remote Desktop Protocol Vulnerability (MS15-067)
Severity: Category I - VMSKEY: V0061107
2015-A-0168 Microsoft Graphics Component Privilege Escalation Vulnerability (MS15-072)
Severity: Category II - VMSKEY: V0061105
2015-A-0169 Multiple Vulnerabilities in Microsoft OLE (MS15-075)
Severity: Category II - VMSKEY: V0061103
2015-A-0162 Multiple Vulnerabilities in Microsoft Windows Kernel-Mode Driver (MS15-073)
Severity: Category II - VMSKEY: V0061097
2015-A-0164 Microsoft Windows Installer Privilege Escalation Vulnerability (MS15-074)
Severity: Category II - VMSKEY: V0061095
2015-A-0165 Microsoft Remote Procedure Call (RPC) Privilege Escalation Vulnerability (MS1...
Severity: Category II - VMSKEY: V0061093
2015-A-0125 Microsoft Common Controls Could Allow Remote Code Execution Vulnerability (MS...
Severity: Category II - VMSKEY: V0060943
2015-A-0122 Microsoft Windows Kernel Elevation of Privilege Vulnerability (MS15-063)
Severity: Category II - VMSKEY: V0060961
2015-A-0111 Microsoft SChannel Information Disclosure Vulnerability (MS15-055)
Severity: Category I - VMSKEY: V0060659

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56856 - Type : OS-WINDOWS - Revision : 1
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56855 - Type : OS-WINDOWS - Revision : 1
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56854 - Type : OS-WINDOWS - Revision : 1
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56853 - Type : OS-WINDOWS - Revision : 1
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56852 - Type : OS-WINDOWS - Revision : 1
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56851 - Type : OS-WINDOWS - Revision : 1
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56850 - Type : OS-WINDOWS - Revision : 1
2021-02-11 Microsoft Windows Win32k kernel driver privilege escalation attempt
RuleID : 56849 - Type : OS-WINDOWS - Revision : 1
2021-01-28 Cisco RV Series Routers stack buffer overflow attempt
RuleID : 56843 - Type : SERVER-WEBAPP - Revision : 2
2021-01-12 Microsoft Windows SMB2 SET_INFO information disclosure attempt
RuleID : 56571 - Type : OS-WINDOWS - Revision : 1
2021-01-08 Microsoft Windows SMB authenticated remote code execution attempt
RuleID : 56562 - Type : OS-WINDOWS - Revision : 1
2021-01-08 Microsoft Windows SMB authenticated remote code execution attempt
RuleID : 56561 - Type : OS-WINDOWS - Revision : 1
2020-12-12 Microsoft Windows NFS v3 Server heap overflow denial of service attempt
RuleID : 56312 - Type : OS-WINDOWS - Revision : 1
2020-12-12 Microsoft Windows NFS v3 Server heap overflow denial of service attempt
RuleID : 56311 - Type : OS-WINDOWS - Revision : 1
2020-12-12 Windows Network File System denial of service attempt
RuleID : 56309 - Type : PROTOCOL-RPC - Revision : 1
2020-12-10 Microsoft Windows NFS read procedure remote code execution attempt
RuleID : 56302 - Type : OS-WINDOWS - Revision : 1
2020-12-10 Microsoft Windows NFS read procedure remote code execution attempt
RuleID : 56301 - Type : OS-WINDOWS - Revision : 1
2020-12-10 Microsoft Windows Common Log Files System driver privilege escalation attempt
RuleID : 56296 - Type : FILE-OTHER - Revision : 1
2020-12-10 Microsoft Windows Common Log Files System driver privilege escalation attempt
RuleID : 56295 - Type : FILE-OTHER - Revision : 1
2020-12-10 Microsoft Windows malicious Netlogon NetrServerAuthenticate3 request attempt
RuleID : 56290 - Type : OS-WINDOWS - Revision : 6
2020-12-10 Microsoft Windows Win32k elevation of privilege attempt
RuleID : 56262 - Type : OS-WINDOWS - Revision : 1
2020-12-10 Microsoft Windows Win32k elevation of privilege attempt
RuleID : 56261 - Type : OS-WINDOWS - Revision : 1
2020-12-08 Microsoft Windows Kernel Cryptography Driver privilege escalation attempt
RuleID : 56231 - Type : OS-WINDOWS - Revision : 1
2020-12-08 Microsoft Windows Kernel Cryptography Driver privilege escalation attempt
RuleID : 56230 - Type : OS-WINDOWS - Revision : 1
2020-11-12 Microsoft Windows Remote Desktop information disclosure attempt
RuleID : 55994 - Type : OS-WINDOWS - Revision : 1

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2019-01-10 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa10917_183R1.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-44f8a7454d.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-527698a904.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-5521156807.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-db0d3e157e.nasl - Type: ACT_GATHER_INFO
2018-10-31 Name: The remote host is missing a macOS security update that fixes multiple vulner...
File: macosx_SecUpd_10_13_6_2018-002.nasl - Type: ACT_GATHER_INFO
2018-10-18 Name: The remote host is missing a macOS update that fixes multiple security vulner...
File: macos_10_14.nasl - Type: ACT_GATHER_INFO
2018-09-18 Name: The remote EulerOS Virtualization host is missing multiple security updates.
File: EulerOS_SA-2018-1265.nasl - Type: ACT_GATHER_INFO
2018-09-18 Name: The remote EulerOS Virtualization host is missing a security update.
File: EulerOS_SA-2018-1267.nasl - Type: ACT_GATHER_INFO
2018-09-18 Name: The remote EulerOS Virtualization host is missing multiple security updates.
File: EulerOS_SA-2018-1270.nasl - Type: ACT_GATHER_INFO
2018-09-18 Name: The remote EulerOS Virtualization host is missing a security update.
File: EulerOS_SA-2018-1271.nasl - Type: ACT_GATHER_INFO
2018-09-17 Name: The remote Debian host is missing a security update.
File: debian_DLA-1506.nasl - Type: ACT_GATHER_INFO
2018-08-17 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4273.nasl - Type: ACT_GATHER_INFO
2018-07-30 Name: The remote Slackware host is missing a security update.
File: Slackware_SSA_2018-208-01.nasl - Type: ACT_GATHER_INFO
2018-07-27 Name: The remote Debian host is missing a security update.
File: debian_DLA-1446.nasl - Type: ACT_GATHER_INFO
2018-07-26 Name: The remote Amazon Linux 2 host is missing a security update.
File: al2_ALAS-2018-1049.nasl - Type: ACT_GATHER_INFO
2018-07-24 Name: The remote PhotonOS host is missing multiple security updates.
File: PhotonOS_PHSA-2018-1_0-0151.nasl - Type: ACT_GATHER_INFO
2018-07-24 Name: The remote PhotonOS host is missing multiple security updates.
File: PhotonOS_PHSA-2018-2_0-0049.nasl - Type: ACT_GATHER_INFO
2018-07-20 Name: The remote Debian host is missing a security update.
File: debian_DLA-1423.nasl - Type: ACT_GATHER_INFO
2018-07-18 Name: The remote Virtuozzo host is missing multiple security updates.
File: Virtuozzo_VZA-2018-048.nasl - Type: ACT_GATHER_INFO
2018-07-16 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2018-2162.nasl - Type: ACT_GATHER_INFO
2018-07-16 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2018-2164.nasl - Type: ACT_GATHER_INFO
2018-07-09 Name: The remote Fedora host is missing a security update.
File: fedora_2018-9f02e5ed7b.nasl - Type: ACT_GATHER_INFO
2018-07-05 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2018-1965.nasl - Type: ACT_GATHER_INFO
2018-07-05 Name: The remote CentOS host is missing one or more security updates.
File: centos_RHSA-2018-1997.nasl - Type: ACT_GATHER_INFO