CVE Catalog

CVE-2026-47652

HighCVSS 8.2
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.34%

26th percentile - higher than 26% of all known CVEs

Summary

A heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally. The vulnerability affects the Windows virtualization component.

Risk Assessment

An attacker with local access can escalate privileges and take control of the Hyper-V host, breaking virtual machine isolation.

Recommendation

Apply the security update released by Microsoft in the monthly cumulative patch as soon as possible.

Original NVD description (English source)

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS