Windows Server 2025 Microsoft Windows Server 2025

  1. Vendors
  2. Microsoft
  3. Windows Server 2025

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Microsoft Windows Server 2025.

By the Year

In 2026 there have been 83 vulnerabilities in Microsoft Windows Server 2025 with an average score of 6.9 out of ten. Last year, in 2025 Windows Server 2025 had 776 security vulnerabilities published. At the current rates, it appears that the number of vulnerabilities last year and this year may equal out. Last year, the average CVE base score was greater by 0.28




Year Vulnerabilities Average Score
2026 83 6.95
2025 776 7.23
2024 91 7.59

It may take a day or so for new Windows Server 2025 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Windows Server 2025 Security Vulnerabilities

Jan 2026: Host Process for Windows Tasks Elevation of Privilege Vulnerability
CVE-2026-20941 7.8 - High - January 13, 2026

Improper link resolution before file access ('link following') in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally.

insecure temporary file

Jan 2026: Windows File Explorer Information Disclosure Vulnerability
CVE-2026-20939 5.5 - Medium - January 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

Information Disclosure

Jan 2026: Windows File Explorer Information Disclosure Vulnerability
CVE-2026-20937 5.5 - Medium - January 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

Information Disclosure

Jan 2026: Windows NDIS Information Disclosure Vulnerability
CVE-2026-20936 4.3 - Medium - January 13, 2026

Out-of-bounds read in Windows NDIS allows an authorized attacker to disclose information with a physical attack.

Out-of-bounds Read

Jan 2026: Windows Telephony Service Elevation of Privilege Vulnerability
CVE-2026-20931 8 - High - January 13, 2026

External control of file name or path in Windows Telephony Service allows an authorized attacker to elevate privileges over an adjacent network.

External Control of File Name or Path

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20874 7.8 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20873 7.8 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: NTLM Hash Disclosure Spoofing Vulnerability
CVE-2026-20872 6.5 - Medium - January 13, 2026

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

External Control of File Name or Path

Jan 2026: Desktop Windows Manager Elevation of Privilege Vulnerability
CVE-2026-20871 7.8 - High - January 13, 2026

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
CVE-2026-20870 7.8 - High - January 13, 2026

Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2026-20868 8.8 - High - January 13, 2026

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

Heap-based Buffer Overflow

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20867 7.8 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20866 7.8 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Win32k Elevation of Privilege Vulnerability
CVE-2026-20863 7 - High - January 13, 2026

Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

Double-free

Jan 2026: Windows Management Services Information Disclosure Vulnerability
CVE-2026-20862 5.5 - Medium - January 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows Management Services allows an authorized attacker to disclose information locally.

Information Disclosure

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20861 7.8 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerabi
CVE-2026-20854 7.5 - High - January 13, 2026

Use after free in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to execute code over a network.

Dangling pointer

Jan 2026: Windows Kerberos Elevation of Privilege Vulnerability
CVE-2026-20849 7.5 - High - January 13, 2026

Reliance on untrusted inputs in a security decision in Windows Kerberos allows an authorized attacker to elevate privileges over a network.

Reliance on Untrusted Inputs in a Security Decision

Jan 2026: Windows Routing and Remote Access Service (RRAS) Elevation of Privilege Vulnerability
CVE-2026-20843 7.8 - High - January 13, 2026

Improper access control in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges locally.

Authorization

Jan 2026: Windows SMB Server Elevation of Privilege Vulnerability
CVE-2026-20848 7.5 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

Race Condition

Jan 2026: Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
CVE-2026-21221 7 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
CVE-2026-20830 7 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Windows SMB Server Elevation of Privilege Vulnerability
CVE-2026-20934 7.5 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

Race Condition

Jan 2026: Windows File Explorer Information Disclosure Vulnerability
CVE-2026-20932 5.5 - Medium - January 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

Information Disclosure

Jan 2026: Windows SMB Server Denial of Service Vulnerability
CVE-2026-20927 5.3 - Medium - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to deny service over a network.

Race Condition

Jan 2026: Windows SMB Server Elevation of Privilege Vulnerability
CVE-2026-20926 7.5 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

Race Condition

Jan 2026: NTLM Hash Disclosure Spoofing Vulnerability
CVE-2026-20925 6.5 - Medium - January 13, 2026

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

External Control of File Name or Path

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20924 7.8 - High - January 13, 2026

Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20923 7.8 - High - January 13, 2026

Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows NTFS Remote Code Execution Vulnerability
CVE-2026-20922 7.8 - High - January 13, 2026

Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.

Heap-based Buffer Overflow

Jan 2026: Windows SMB Server Elevation of Privilege Vulnerability
CVE-2026-20921 7.5 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

Race Condition

Jan 2026: Windows SMB Server Elevation of Privilege Vulnerability
CVE-2026-20919 7.5 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

Race Condition

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20918 7.8 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20877 7.8 - High - January 13, 2026

Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability
CVE-2026-20876 6.7 - Medium - January 13, 2026

Heap-based buffer overflow in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.

Heap-based Buffer Overflow

Jan 2026: Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability
CVE-2026-20875 7.5 - High - January 13, 2026

Null pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.

NULL Pointer Dereference

Jan 2026: Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability
CVE-2026-20869 7 - High - January 13, 2026

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Local Session Manager (LSM) allows an authorized attacker to elevate privileges locally.

Race Condition

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20865 7.8 - High - January 13, 2026

Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
CVE-2026-20864 7.8 - High - January 13, 2026

Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.

Heap-based Buffer Overflow

Jan 2026: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-20860 7.8 - High - January 13, 2026

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Object Type Confusion

Jan 2026: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2026-20859 7.8 - High - January 13, 2026

Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Management Services Elevation of Privilege Vulnerability
CVE-2026-20858 7.8 - High - January 13, 2026

Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2026-20857 7.8 - High - January 13, 2026

Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

Untrusted Pointer Dereference

Jan 2026: Windows Server Update Service (WSUS) Remote Code Execution Vulnerability
CVE-2026-20856 8.1 - High - January 13, 2026

Improper input validation in Windows Server Update Service allows an unauthorized attacker to execute code over a network.

Improper Input Validation

Jan 2026: Windows Hello Tampering Vulnerability
CVE-2026-20852 7.7 - High - January 13, 2026

Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.

Incorrect Privilege Assignment

Jan 2026: Capability Access Management Service (camsvc) Information Disclosure Vulnerability
CVE-2026-20851 6.2 - Medium - January 13, 2026

Out-of-bounds read in Capability Access Management Service (camsvc) allows an unauthorized attacker to disclose information locally.

Out-of-bounds Read

Jan 2026: Microsoft Windows File Explorer Spoofing Vulnerability
CVE-2026-20847 6.5 - Medium - January 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to perform spoofing over a network.

Information Disclosure

Jan 2026: Microsoft DWM Core Library Elevation of Privilege Vulnerability
CVE-2026-20842 7 - High - January 13, 2026

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows Clipboard Server Elevation of Privilege Vulnerability
CVE-2026-20844 7.4 - High - January 13, 2026

Use after free in Windows Clipboard Server allows an unauthorized attacker to elevate privileges locally.

Dangling pointer

Jan 2026: Windows NTFS Remote Code Execution Vulnerability
CVE-2026-20840 7.8 - High - January 13, 2026

Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.

Heap-based Buffer Overflow

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Windows Server 2025 or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

Microsoft Windows Server 2025
Product

subscribe