Known Vulnerabilities for Server by Microsoft
Listed below are 3 of the newest known vulnerabilities associated with "Server" by "Microsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-63306 json | stoatchat before 0.13.5 contains an unauthenticated server-side request forgery vulnerability in the /proxy and /embed endpoi... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-63305 json | AVideo through 29.0 contains an OS command injection vulnerability in the ffmpeg.json.php endpoint where notifyCode and callb... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-63304 json | AVideo through 29.0 contains an OS command injection vulnerability in plugin/API/standAlone/functions.php where the listFFmpe... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-62353 json | TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.14, source/libs/parser/src/parTok... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-62351 json | TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.15, source/libs/transport/src/tra... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-62350 json | TDengine is an open source, time-series database optimized for Internet of Things devices. Prior to 3.4.1.15, a user with cre... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-62242 json | Spring Boot Admin Server before 4.1.2 contains a server-side request forgery vulnerability that allows unauthenticated attack... | Not Provided | 2026-07-13 | 2026-07-15 |
| CVE-2026-62240 json | CrewAI before 1.15.1 contains a server-side request forgery vulnerability in the validate_url function that performs one-shot... | Not Provided | 2026-07-13 | 2026-07-14 |
| CVE-2026-62185 json | Argo CD Helm Chart before 10.0.0 fails to install network policies by default, allowing any pod on a cluster to access repo-s... | Not Provided | 2026-07-13 | 2026-07-14 |
| CVE-2026-62143 json | A Server-Side Request Forgery (SSRF) protection bypass existed in the html_to_markdown expansion module of misp-modules. The... | Not Provided | 2026-07-13 | 2026-07-14 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Microsoft | Server | 2008 |