When does Windows Server 2019 reach end-of-life?

The latest supported Windows Server 2019 release is 10.0.26100. After end-of-life a release no longer receives security patches.

← All products

Windows Server 2019 ↗

Microsoft · Operating System

85/100 Good

Summary iPlain-English security verdict for Windows Server 2019, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

Windows Server 2019 currently scores 85/100 — good. 77 actively-exploited vulnerabilities (CISA KEV) affect older releases (e.g. CVE-2020-1472) — staying on the latest supported version keeps you clear of them. The latest supported release is 10.0.26100. It's largely safe; apply minor updates as they appear. Note: this product is assessed at the product level on recent (365-day) activity rather than an exact per-version match, so it is never marked a confident "healthy".

Disclosure trend iNew CVEs published for Windows Server 2019 each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19

'20

'21

'22

'23

'24

'25

'26

⚠ 32 of its known vulnerabilities are linked to ransomware campaigns (CISA KEV).

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

Most urgent first — actively exploited, then likeliest to be exploited.

CVE-2020-1472 MEDIUM ● exploited ⚠ ransomware EPSS 94% → see advisory CVE-2021-40444 HIGH ● exploited ⚠ ransomware Path traversal EPSS 94% → fixed in 10.0.17763.2183 CVE-2021-1675 HIGH ● exploited ⚠ ransomware EPSS 94% → fixed in 10.0.17763.1999 CVE-2021-34527 HIGH ● exploited ⚠ ransomware EPSS 94% → fixed in 10.0.17763.2029 CVE-2020-0601 HIGH ● exploited CWE-295 EPSS 94% → see advisory CVE-2021-42278 HIGH ● exploited ⚠ ransomware EPSS 94% → fixed in 10.0.17763.2300 CVE-2021-42287 HIGH ● exploited ⚠ ransomware EPSS 94% → fixed in 10.0.17763.2300 CVE-2020-0646 CRITICAL ● exploited CWE-91 EPSS 94% → see advisory CVE-2020-1350 CRITICAL ● exploited Improper input validation EPSS 94% → see advisory CVE-2020-0674 HIGH ● exploited Use-after-free EPSS 94% → see advisory CVE-2021-36942 HIGH ● exploited ⚠ ransomware EPSS 94% → fixed in 10.0.17763.2114 CVE-2020-1147 HIGH ● exploited EPSS 93% → see advisory

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each Windows Server 2019 release line is supported — and when it sunsets.

2025 latest 10.0.26100 Supported until 2034-10-10

23h2-ac latest 10.0.25398 End of life ended 2025-10-24

2022 latest 10.0.20348 Supported until 2031-10-14

20h2-sac latest 10.0.19042 End of life ended 2022-08-09

2004-sac latest 10.0.19041 End of life ended 2021-12-14

1909-sac latest 10.0.18363 End of life ended 2021-05-11

1903-sac latest 10.0.18362 End of life ended 2020-12-08

1809-sac latest 10.0.17763 End of life ended 2020-11-10

2019 latest 10.0.17763 Supported until 2029-01-09

1803-sac latest 10.0.17134 End of life ended 2019-11-12

See all upcoming end-of-life dates →

ℹ product-level posture (last 365d); exact per-version verdict pending precise version mapping