Windows Server 2025
by Microsoft
Standard maintenance is sufficient
Windows Server 2025 has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
4.3%
Confirmed actively exploited (CISA)
3.4%
Public exploit code available
0.0%
Based on 1018 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2024-43451 | 6.5 | 90.3% | Yes |
| CVE-2024-49113 | 7.5 | 88.6% | — |
| CVE-2024-49138 | 7.8 | 85.8% | Yes |
| CVE-2025-21333 | 7.8 | 81.3% | Yes |
| CVE-2024-49112 | 9.8 | 80.7% | — |
| CVE-2013-3900 | 5.5 | 78.1% | Yes |
| CVE-2025-21293 | 8.8 | 75.8% | — |
| CVE-2025-59287 | 9.8 | 75.7% | Yes |
| CVE-2025-21298 | 9.8 | 72.2% | — |
| CVE-2024-49039 | 8.8 | 63.7% | Yes |
| CVE-2025-24071 | 6.5 | 57.7% | — |
| CVE-2025-33053 | 8.8 | 50.3% | Yes |
| CVE-2025-32724 | 7.5 | 46.2% | — |
| CVE-2025-33068 | 7.5 | 44.4% | — |
| CVE-2025-26673 | 7.5 | 44.1% | — |
| CVE-2025-26680 | 7.5 | 42.4% | — |
| CVE-2025-26641 | 7.5 | 42.4% | — |
| CVE-2025-27469 | 7.5 | 42.4% | — |
| CVE-2025-26652 | 7.5 | 42.4% | — |
| CVE-2025-27473 | 7.5 | 42.4% | — |
10
/ 100
low-risk
Active Threat
6/50 · Minimal
Exploit Availability
4/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.