📦

windows_server_2008

Vendor: microsoft

Login to add this product to WatchStack
Actively Exploited 141 CISA KEV List
PoC / Exploits 454 Code Available
Total RCEs 810 Remote Access
Total CVEs 16698 Total Indexed
Avg. EPSS 8.39% Exploit Prob.
Latest CVE CVE-2026-20940 Jan 13

Security Vulnerability Index

Page 5 / 1670
7.8 CVSS
CVE-2025-60720

Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally.

EPSS: 0.38%
7.0 CVSS
CVE-2025-60719
Exploit Found

Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

EPSS: 1.68%
8.0 CVSS
CVE-2025-60715

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

EPSS: 0.78%
7.8 CVSS
CVE-2025-60714

Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally.

EPSS: 0.54%
7.8 CVSS
CVE-2025-60709
Exploit Found

Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

EPSS: 0.50%
7.8 CVSS
CVE-2025-60705

Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.

EPSS: 2.27%
7.5 CVSS
CVE-2025-60704

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network.

EPSS: 0.48%
7.8 CVSS
CVE-2025-60703

Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.

EPSS: 0.39%
7.8 CVSS
CVE-2025-59514

Improper privilege management in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

EPSS: 0.34%
5.5 CVSS
CVE-2025-59513

Out-of-bounds read in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to disclose information locally.

EPSS: 0.44%