CVE Catalog

CVE-2026-42972

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.07%

22th percentile - higher than 22% of all known CVEs

Summary

A vulnerability in Windows Hyper-V allows an authorized attacker to disclose sensitive information locally. This issue involves the exposure of sensitive data to an unauthorized actor.

Risk Assessment

The organization may be at risk of disclosing confidential information, which could lead to further attacks or data privacy breaches.

Recommendation

It is recommended to monitor access to Hyper-V and implement additional security measures to mitigate the risk of unauthorized access.

Original NVD description (English source)

Exposure of sensitive information to an unauthorized actor in Windows Hyper-V allows an authorized attacker to disclose information locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS