Microsoft Windows Server 2012 R2
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microsoft Windows Server 2012 R2.
By the Year
In 2026 there have been 141 vulnerabilities in Microsoft Windows Server 2012 R2 with an average score of 7.2 out of ten. Last year, in 2025 Windows Server 2012 R2 had 474 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Windows Server 2012 R2 in 2026 could surpass last years number. Last year, the average CVE base score was greater by 0.15
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 141 | 7.15 |
| 2025 | 474 | 7.31 |
| 2024 | 98 | 7.43 |
| 2023 | 41 | 7.51 |
| 2022 | 23 | 7.65 |
| 2021 | 66 | 7.52 |
| 2020 | 81 | 7.09 |
| 2019 | 45 | 7.07 |
| 2018 | 95 | 7.85 |
It may take a day or so for new Windows Server 2012 R2 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Windows Server 2012 R2 Security Vulnerabilities
Apr 2026: Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability
CVE-2026-32214
5.5 - Medium
- April 14, 2026
Improper access control in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.
Authorization
Apr 2026: Windows Snipping Tool Spoofing Vulnerability
CVE-2026-33829
4.3 - Medium
- April 14, 2026
Exposure of sensitive information to an unauthorized actor in Windows Snipping Tool allows an unauthorized attacker to perform spoofing over a network.
Information Disclosure
Apr 2026: Windows TCP/IP Remote Code Execution Vulnerability
CVE-2026-33827
8.1 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
Race Condition
Apr 2026: Win32k Elevation of Privilege Vulnerability
CVE-2026-33104
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-33100
7 - High
- April 14, 2026
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-33099
7 - High
- April 14, 2026
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows Shell Security Feature Bypass Vulnerability
CVE-2026-32225
8.8 - High
- April 14, 2026
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
Protection Mechanism Failure
Apr 2026: Windows Shell Information Disclosure Vulnerability
CVE-2026-32151
6.5 - Medium
- April 14, 2026
Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network.
Information Disclosure
Apr 2026: Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability
CVE-2026-32150
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows Print Spooler Information Disclosure Vulnerability
CVE-2026-32084
5.5 - Medium
- April 14, 2026
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.
Information Disclosure
Apr 2026: Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability
CVE-2026-32086
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2026-32077
7.8 - High
- April 14, 2026
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
Untrusted Pointer Dereference
Apr 2026: Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2026-32070
7 - High
- April 14, 2026
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows GDI Information Disclosure Vulnerability
CVE-2026-27930
5.5 - Medium
- April 14, 2026
Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.
Out-of-bounds Read
Apr 2026: Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnera
CVE-2026-32068
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows UPnP Device Host Information Disclosure Vulnerability
CVE-2026-27925
6.5 - Medium
- April 14, 2026
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to disclose information over an adjacent network.
Dangling pointer
Apr 2026: Desktop Window Manager Elevation of Privilege Vulnerability
CVE-2026-27923
7.8 - High
- April 14, 2026
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-27922
7 - High
- April 14, 2026
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2026-27920
7.8 - High
- April 14, 2026
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
Untrusted Pointer Dereference
Apr 2026: Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2026-27916
7.8 - High
- April 14, 2026
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Microsoft Management Console Elevation of Privilege Vulnerability
CVE-2026-27914
7.8 - High
- April 14, 2026
Improper access control in Microsoft Management Console allows an authorized attacker to elevate privileges locally.
Authorization
Apr 2026: Windows BitLocker Security Feature Bypass Vulnerability
CVE-2026-27913
7.7 - High
- April 14, 2026
Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature locally.
Improper Input Validation
Apr 2026: Windows Kerberos Elevation of Privilege Vulnerability
CVE-2026-27912
8 - High
- April 14, 2026
Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over an adjacent network.
AuthZ
Apr 2026: Windows Installer Elevation of Privilege Vulnerability
CVE-2026-27910
7.8 - High
- April 14, 2026
Improper handling of insufficient permissions or privileges in Windows Installer allows an authorized attacker to elevate privileges locally.
Improper Handling of Insufficient Permissions or Privileges
Apr 2026: Windows Search Service Elevation of Privilege Vulnerability
CVE-2026-27909
7.8 - High
- April 14, 2026
Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-26182
7 - High
- April 14, 2026
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-26177
7 - High
- April 14, 2026
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-26173
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows Client Side Caching driver (csc.sys) Elevation of Privilege Vulnerability
CVE-2026-26176
7.8 - High
- April 14, 2026
Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally.
Heap-based Buffer Overflow
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-26168
7.8 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows Kernel Elevation of Privilege Vulnerability
CVE-2026-26163
7.8 - High
- April 14, 2026
Double free in Windows Kernel allows an authorized attacker to elevate privileges locally.
Double-free
Apr 2026: Remote Desktop Licensing Service Elevation of Privilege Vulnerability
CVE-2026-26159
7.8 - High
- April 14, 2026
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally.
Missing Authentication for Critical Function
Apr 2026: Microsoft Cryptographic Services Elevation of Privilege Vulnerability
CVE-2026-26152
7 - High
- April 14, 2026
Insecure storage of sensitive information in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.
Insecure Storage of Sensitive Information
Apr 2026: Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability
CVE-2026-32212
5.5 - Medium
- April 14, 2026
Improper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.
insecure temporary file
Apr 2026: Windows Active Directory Remote Code Execution Vulnerability
CVE-2026-33826
8 - High
- April 14, 2026
Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.
Improper Input Validation
Apr 2026: Windows Kernel Information Disclosure Vulnerability
CVE-2026-32217
5.5 - Medium
- April 14, 2026
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.
Insertion of Sensitive Information into Log File
Apr 2026: Windows Shell Spoofing Vulnerability
CVE-2026-32202
4.3 - Medium
- April 14, 2026
Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network.
Protection Mechanism Failure
Apr 2026: Windows Snipping Tool Remote Code Execution Vulnerability
CVE-2026-32183
7.8 - High
- April 14, 2026
Improper neutralization of special elements used in a command ('command injection') in Windows Snipping Tool allows an unauthorized attacker to execute code locally.
Command Injection
Apr 2026: Remote Desktop Client Remote Code Execution Vulnerability
CVE-2026-32157
8.8 - High
- April 14, 2026
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
Dangling pointer
Apr 2026: Windows UPnP Device Host Remote Code Execution Vulnerability
CVE-2026-32156
7.4 - High
- April 14, 2026
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally.
Dangling pointer
Apr 2026: Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability
CVE-2026-32093
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability
CVE-2026-32087
7 - High
- April 14, 2026
Heap-based buffer overflow in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
Heap-based Buffer Overflow
Apr 2026: Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnera
CVE-2026-32083
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnera
CVE-2026-32082
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2026-32075
7 - High
- April 14, 2026
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-32073
7 - High
- April 14, 2026
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
Dangling pointer
Apr 2026: Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability
CVE-2026-27929
7 - High
- April 14, 2026
Time-of-check time-of-use (toctou) race condition in Windows LUAFV allows an authorized attacker to elevate privileges locally.
TOCTTOU
Apr 2026: Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability
CVE-2026-27921
7 - High
- April 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
Race Condition
Apr 2026: Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2026-27919
7.8 - High
- April 14, 2026
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
Untrusted Pointer Dereference
Apr 2026: Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) Elevation of Privilege Vulnerabil
CVE-2026-27917
7 - High
- April 14, 2026
Use after free in Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) allows an authorized attacker to elevate privileges locally.
Dangling pointer
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Windows Server 2012 R2 or by Microsoft? Click the Watch button to subscribe.
