Example of a windows vulnerability is MS17-010 (Eternal Blue). Windows is also vulnerable to cross-platform vulnerabilities, for example SQLi.

Systems/hosts running windows are also vulnerable to physical attacks like theft,malicious peripheral devices

Frequently Exploited Windows Services

Microsoft IIS TCP ports 80/443 WebDav(Web Distributed Authoring and Versioning) TCP ports 80/443 SMB/CIFS TCP port 445 RDP(Remote Desktop Protocol) TCP port 3389 WinRM(Windows Remote Management Protocol) TCP ports 5986/443