This page lists publicly disclosed CVE vulnerabilities affecting microsoft windows_server_2012 (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-50684 | Improper neutralization of input during web page generation ('cross-site scripting') in Active Directory Federation Services (AD FS) allows an authorized attacker to perform spoofing over a network. | [email protected] | 4.8 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50683 | Heap-based buffer overflow in Windows DHCP Server allows an authorized attacker to elevate privileges over an adjacent network. | [email protected] | 8.0 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50673 | Null pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50669 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Telephony Service allows an authorized attacker to elevate privileges locally. | [email protected] | 7.0 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50667 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows NTFS allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50647 | Loop with unreachable exit condition ('infinite loop') in Active Directory Federation Services (AD FS) allows an unauthorized attacker to deny service over a network. | [email protected] | 7.5 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50518 | Heap-based buffer overflow in Windows DHCP Server allows an unauthorized attacker to execute code over a network. | [email protected] | 9.8 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50505 | Use after free in Windows Message Queuing allows an authorized attacker to execute code over a network. | [email protected] | 7.5 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50504 | Buffer over-read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network. | [email protected] | 6.5 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50502 | Insufficient granularity of access control in Windows Event Logging Service allows an authorized attacker to execute code over a network. | [email protected] | 8.0 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50500 | Use after free in Windows Netlogon allows an authorized attacker to elevate privileges over a network. | [email protected] | 7.5 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50498 | Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability | [email protected] | 7.8 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50497 | Off-by-one error in Windows Remote Desktop Protocol allows an unauthorized attacker to disclose information over a network. | [email protected] | 6.5 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50496 | Out-of-bounds read in Windows Network Policy Server SNMP allows an unauthorized attacker to disclose information over a network. | [email protected] | 7.5 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50494 | Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally. | [email protected] | 7.8 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50491 | Out-of-bounds read in Code Integrity DLL (ci.dll) allows an authorized attacker to elevate privileges locally. | [email protected] | 7.0 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50490 | Use after free in Windows Installer allows an authorized attacker to elevate privileges locally. | [email protected] | 7.0 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50489 | Heap-based buffer overflow in Windows Win32K allows an authorized attacker to elevate privileges locally. | [email protected] | 8.8 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50485 | Buffer over-read in Windows Hyper-V allows an authorized attacker to deny service over an adjacent network. | [email protected] | 4.5 | — | 2026-07-14 | 2026-07-14 |
| CVE-2026-50482 | Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally. | [email protected] | 7.3 | — | 2026-07-14 | 2026-07-14 |