CVE Catalog

CVE-2026-42910

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.06%

19th percentile - higher than 19% of all known CVEs

Summary

An out-of-bounds write in Windows Hotpatch Monitoring Service allows an authorized attacker to elevate privileges locally.

Risk Assessment

An attacker with appropriate permissions could exploit this vulnerability to gain higher privileges on the system, posing a serious security risk.

Recommendation

It is recommended to update Windows to the latest version to patch this vulnerability and to monitor system access for unauthorized activities.

Original NVD description (English source)

Out-of-bounds write in Windows Hotpatch Monitoring Service allows an authorized attacker to elevate privileges locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS