Windows Server 20H2
by Microsoft
Immediate action recommended
Windows Server 20H2 has critical exploitation rates across its known vulnerabilities.
What to do
- Check for patches and apply immediately
- Review whether this software can be replaced with a safer alternative
- Consult your IT provider about mitigation options
What Attackers Target
Vulnerabilities with high exploit probability
46.2%
Confirmed actively exploited (CISA)
67.3%
Public exploit code available
0.0%
Based on 52 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2020-1472 | 5.5 | 94.4% | Yes |
| CVE-2021-40444 | 8.8 | 94.3% | Yes |
| CVE-2021-34527 | 8.8 | 94.2% | Yes |
| CVE-2021-42278 | 7.5 | 94.1% | Yes |
| CVE-2021-36942 | 7.5 | 93.7% | Yes |
| CVE-2022-30190 | 7.8 | 93.6% | Yes |
| CVE-2021-31166 | 9.8 | 93.0% | Yes |
| CVE-2021-40449 | 7.8 | 91.7% | Yes |
| CVE-2021-31956 | 7.8 | 90.7% | Yes |
| CVE-2022-21882 | 7.0 | 90.1% | Yes |
| CVE-2021-1732 | 7.8 | 90.1% | Yes |
| CVE-2022-21971 | 7.8 | 87.1% | Yes |
| CVE-2022-21999 | 7.8 | 71.3% | Yes |
| CVE-2021-28310 | 7.8 | 54.0% | Yes |
| CVE-2022-35748 | 7.5 | 47.4% | — |
| CVE-2022-26925 | 8.1 | 37.4% | Yes |
| CVE-2021-34486 | 7.8 | 36.5% | Yes |
| CVE-2022-26904 | 7.0 | 21.6% | Yes |
| CVE-2021-36955 | 7.8 | 20.6% | Yes |
| CVE-2022-35755 | 7.3 | 19.0% | — |
100
/ 100
critical-risk
Active Threat
50/50 · Critical
Exploit Availability
50/50 · Critical
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.