Windows Defender
by Microsoft
Immediate action recommended
Windows Defender has critical exploitation rates across its known vulnerabilities.
What to do
- Check for patches and apply immediately
- Review whether this software can be replaced with a safer alternative
- Consult your IT provider about mitigation options
What Attackers Target
Vulnerabilities with high exploit probability
40.9%
Confirmed actively exploited (CISA)
9.1%
Public exploit code available
40.9%
Based on 22 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2017-0290 | 7.8 | 87.8% | — |
| CVE-2017-8540 | 7.8 | 84.6% | Yes |
| CVE-2021-1647 | 7.8 | 77.4% | Yes |
| CVE-2018-0986 | 8.8 | 75.4% | — |
| CVE-2017-8541 | 7.8 | 64.2% | — |
| CVE-2017-8538 | 7.8 | 62.6% | — |
| CVE-2017-8558 | 7.8 | 57.8% | — |
| CVE-2017-8542 | 5.5 | 19.2% | — |
| CVE-2017-8539 | 5.5 | 19.2% | — |
| CVE-2019-1255 | 7.5 | 9.1% | — |
| CVE-2017-8536 | 5.5 | 5.0% | — |
| CVE-2017-8537 | 5.5 | 5.0% | — |
| CVE-2017-8535 | 5.5 | 5.0% | — |
| CVE-2023-36422 | 7.8 | 0.7% | — |
| CVE-2019-1161 | 7.1 | 0.6% | — |
| CVE-2021-24092 | 7.8 | 0.4% | — |
| CVE-2020-1002 | 7.1 | 0.3% | — |
| CVE-2020-0835 | 7.8 | 0.3% | — |
| CVE-2020-1163 | 7.8 | 0.2% | — |
| CVE-2020-1461 | 7.1 | 0.2% | — |
85
/ 100
critical-risk
Active Threat
46/50 · Critical
Exploit Availability
39/50 · High
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.