📦

windows_server_2008

Vendor: microsoft

Login to add this product to WatchStack
Actively Exploited 141 CISA KEV List
PoC / Exploits 454 Code Available
Total RCEs 810 Remote Access
Total CVEs 16698 Total Indexed
Avg. EPSS 8.39% Exploit Prob.
Latest CVE CVE-2026-20940 Jan 13

Security Vulnerability Index

Page 21 / 1670
7.8 CVSS
CVE-2025-47976

Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally.

EPSS: 0.38%
7.0 CVSS
CVE-2025-47975

Double free in Windows SSDP Service allows an authorized attacker to elevate privileges locally.

EPSS: 0.32%
7.8 CVSS
CVE-2025-47973

Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.

EPSS: 0.46%
7.8 CVSS
CVE-2025-47971

Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.

EPSS: 0.46%
7.8 CVSS
CVE-2025-47955

Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.

EPSS: 0.81%
7.8 CVSS
CVE-2025-33075

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

EPSS: 0.52%
8.8 CVSS
CVE-2025-33073
Exploit Found

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

EPSS: 64.31%
8.1 CVSS
CVE-2025-33070

Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network.

EPSS: 6.12%
8.8 CVSS
CVE-2025-33066

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

EPSS: 0.95%
8.8 CVSS
CVE-2025-33064

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

EPSS: 1.11%