📦

windows_server_2008

Vendor: microsoft

Login to add this product to WatchStack
Actively Exploited 141 CISA KEV List
PoC / Exploits 454 Code Available
Total RCEs 810 Remote Access
Total CVEs 16698 Total Indexed
Avg. EPSS 8.39% Exploit Prob.
Latest CVE CVE-2026-20940 Jan 13

Security Vulnerability Index

Page 8 / 1670
7.0 CVSS
CVE-2025-58732

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

EPSS: 0.43%
7.0 CVSS
CVE-2025-58730

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

EPSS: 0.32%
6.5 CVSS
CVE-2025-58729

Improper validation of specified type of input in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network.

EPSS: 0.96%
7.5 CVSS
CVE-2025-58726
Exploit Found

Improper access control in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

EPSS: 0.99%
7.0 CVSS
CVE-2025-58725

Heap-based buffer overflow in Windows COM allows an authorized attacker to elevate privileges locally.

EPSS: 0.23%
6.5 CVSS
CVE-2025-58717

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

EPSS: 0.88%
7.8 CVSS
CVE-2025-58714

Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

EPSS: 0.25%
7.8 CVSS
CVE-2025-55701

Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to elevate privileges locally.

EPSS: 0.37%
6.5 CVSS
CVE-2025-55700

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

EPSS: 0.88%
5.5 CVSS
CVE-2025-55695

Out-of-bounds read in Windows WLAN Auto Config Service allows an authorized attacker to disclose information locally.

EPSS: 0.37%