Synced 17 Jun 2026 22:27 UTC Account
← All products

Windows Server 2022

Microsoft · Operating System
↻ RSS feed
Monitors Windows Server 2022 and tailors your dashboard to that exact version.
10.0.26100 · latest cycle85/100 Good

Summary iPlain-English security verdict for Windows Server 2022, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

Windows Server 2022 currently scores 85/100 — good. 85 actively-exploited vulnerabilities (CISA KEV) affect older releases (e.g. CVE-2023-44487) — staying on the latest supported version keeps you clear of them. The latest supported release is 10.0.26100. It's largely safe; apply minor updates as they appear. Note: this product is assessed at the product level on recent (365-day) activity rather than an exact per-version match, so it is never marked a confident "healthy".

Disclosure trend iNew CVEs published for Windows Server 2022 each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19
'20
'21
'22
'23
'24
'25
'26

25 of its known vulnerabilities are linked to ransomware campaigns (CISA KEV).

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

Most urgent first — actively exploited, then likeliest to be exploited.

CVE-2023-44487 HIGH exploited Uncontrolled resource consumption EPSS 100% → see advisory CVE-2021-34527 HIGH exploited ransomware EPSS 100% → fixed in 10.0.20348.230 CVE-2022-30190 HIGH exploited ransomware EPSS 99% → fixed in 10.0.20348.770 CVE-2023-36884 HIGH exploited ransomware CWE-362 EPSS 99% → fixed in 10.0.20348.1903 CVE-2024-29059 HIGH exploited Information disclosure EPSS 99% → see advisory CVE-2021-40444 HIGH exploited ransomware Path traversal EPSS 97% → fixed in 10.0.20348.230 CVE-2024-21412 HIGH exploited ransomware CWE-693 EPSS 95% → fixed in 10.0.25398.709 CVE-2023-36025 HIGH exploited EPSS 88% → fixed in 10.0.20348.2113 CVE-2024-38112 HIGH exploited CWE-451 EPSS 84% → fixed in 10.0.25398.1009 CVE-2022-26923 HIGH exploited CWE-295 EPSS 83% → fixed in 10.0.20348.1668 CVE-2024-43451 MEDIUM exploited CWE-73 EPSS 82% → fixed in 10.0.25398.1251 CVE-2023-24880 MEDIUM exploited ransomware Incorrect authorization EPSS 78% → fixed in 10.0.20348.1602

See all 2000 known Windows Server 2022 CVEs & security history →

Get alerted about Windows Server 2022

Be emailed the moment Windows Server 2022 gets a newly exploited vulnerability (CISA KEV) or a release reaches end of life. Free · double opt-in · unsubscribe anytime.

We email only on real events for Windows Server 2022 — no marketing, no sharing, and we never know what you run. Track your whole stack →

Monitor up to 200 products — freeHit ☆ Monitor on anything you run, then sign in (no password) to sync your stack across devices and unlock smart insights, risk history & CSV/JSON exports. Sign in free →

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each Windows Server 2022 release line is supported — and when it sunsets.

Oct10'34 Windows Server 2022 2025EOL 2034-10-10
Oct14'31 Windows Server 2022 2022EOL 2031-10-14
Jan9'29 Windows Server 2022 2019EOL 2029-01-09
Jan12'27 Windows Server 2022 2016EOL 2027-01-12
Oct24'25 Windows Server 2022 23h2-acended 2025-10-24
Oct10'23 Windows Server 2022 2012-r2ended 2023-10-10
Oct10'23 Windows Server 2022 2012ended 2023-10-10
Aug9'22 Windows Server 2022 20h2-sacended 2022-08-09
Dec14'21 Windows Server 2022 2004-sacended 2021-12-14
May11'21 Windows Server 2022 1909-sacended 2021-05-11
Dec8'20 Windows Server 2022 1903-sacended 2020-12-08
Nov10'20 Windows Server 2022 1809-sacended 2020-11-10

Full Windows Server 2022 end-of-life dates & support timeline →

2025 latest 10.0.26100 Supported until 2034-10-10
23h2-ac latest 10.0.25398 End of life ended 2025-10-24
2022 latest 10.0.20348 Supported until 2031-10-14
20h2-sac latest 10.0.19042 End of life ended 2022-08-09
2004-sac latest 10.0.19041 End of life ended 2021-12-14
1909-sac latest 10.0.18363 End of life ended 2021-05-11
1903-sac latest 10.0.18362 End of life ended 2020-12-08
1809-sac latest 10.0.17763 End of life ended 2020-11-10
2019 latest 10.0.17763 Supported until 2029-01-09
1803-sac latest 10.0.17134 End of life ended 2019-11-12
See all upcoming end-of-life dates →

Frequently asked

Is Windows Server 2022 safe and patched?

Windows Server 2022 currently scores 85/100 — good. 85 actively-exploited vulnerabilities (CISA KEV) affect older releases (e.g. CVE-2023-44487) — staying on the latest supported version keeps you clear of them. The latest supported release is 10.0.26100. It's largely safe; apply minor updates as they appear. Note: this product is assessed at the product level on recent (365-day) activity rather than an exact per-version match, so it is never marked a confident "healthy".

What should I do about Windows Server 2022 now?

Upgrade Windows Server 2022 to the latest supported release (10.0.26100) or later, which clears the actively-exploited issues affecting older versions, then confirm against Microsoft's official advisory.

When does Windows Server 2022 reach end-of-life?

The latest supported Windows Server 2022 release is 10.0.26100. After end-of-life a release no longer receives security patches.

Which versions of Windows Server 2022 are still receiving security updates?

Supported Windows Server 2022 release lines (latest 10.0.26100): 2025, 2022, 2019, 2016. End-of-life releases no longer receive security patches.

product-level posture (last 365d); exact per-version verdict pending precise version mapping

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Microsoft's official advisory before you patch or upgrade — Windows Server 2022 official site ↗