Microsoft
Security Scorecard
Score
25F
Total CVEs
641
Patch Rate
28%
178 patched
Avg Response
1052d
days to patch
Critical Gaps
35
exploitable, no detection
Severity Breakdown
Critical17
High299
Medium264
Low40
Patch Status
Patched178 (28%)
Partial/Workaround31 (5%)
Unpatched432 (67%)
CVEs (645)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2026-20871 | Windows Desktop Manager Bypass | High | 7.8 | - | Workaround |
| CVE-2026-20872 | Windows NTLM Spoofing Vulnerability | Medium | 6.5 | - | Patched |
| CVE-2026-20873 | Windows Management Services Race Condition | High | 7.8 | - | Patched |
| CVE-2026-20874 | Windows Management Services Vulnerability | High | 7.8 | - | Patched |
| CVE-2026-20875 | Windows LSASS Denial of Service | High | 7.5 | - | Patched |
| CVE-2026-20876 | Windows Virtualization-Based Security (VBS) Enclave Heap Overflow | Medium | 6.7 | - | Patched |
| CVE-2026-20877 | Windows Management Services Vulnerability | High | 7.8 | - | Patched |
| CVE-2026-20918 | Windows Management Services Local Privilege Escalation | High | 7.8 | 0d | Unpatched |
| CVE-2026-20919 | Windows SMB Server Race Condition Vulnerability | High | 7.5 | - | Patched |
| CVE-2026-20920 | Windows Win32K ICOMP Vulnerability | High | 7.8 | - | Patched |