CVE Catalog

CVE-2026-45641

HighCVSS 8.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.31%

23th percentile - higher than 23% of all known CVEs

Summary

A type confusion vulnerability in Windows Hyper-V allows an unauthorized attacker to execute code locally. The flaw arises from accessing a resource using an incompatible type.

Risk Assessment

An attacker could gain full control over the Hyper-V system, compromising the integrity and confidentiality of virtual machines and data.

Recommendation

Apply the security update provided by Microsoft for Windows Hyper-V immediately. Restricting system access to trusted users reduces the risk.

Original NVD description (English source)

Access of resource using incompatible type ('type confusion') in Windows Hyper-V allows an unauthorized attacker to execute code locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS