CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2026-45657

CVSS 9.8v3.1pub. 2026-06-09upd. 2026-06-10

Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.

🤖 AI Analysis
How it works

The use-after-free vulnerability (CWE-416) involves referencing a memory area after it has been freed, which can lead to execution of attacker-controlled code. Additionally, the classified vulnerability CWE-122 indicates a heap buffer overflow, which may co-occur or be related to the same memory handling error in Windows Kernel. The network attack vector (AV:N) without requiring authentication (PR:N) or user interaction (UI:N) makes this vulnerability particularly dangerous.

Impact

An attacker can execute arbitrary code with kernel privileges, which in practice means complete system takeover, violation of data confidentiality and integrity, and potential system unavailability.

Mitigation & patch

Patches available from the vendor should be applied in accordance with references at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45657

Who is affected

Windows systems with the vulnerable Windows Kernel component — versions indicated in vendor references (Microsoft Security Response Center).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Microsoft Windows 11 23h2

    OS
    Microsoft
    < 10.0.22631.7219
  • Microsoft Windows 11 24h2

    OS
    Microsoft
    < 10.0.26100.8655
  • Microsoft Windows 11 25h2

    OS
    Microsoft
    < 10.0.26200.8655
  • Microsoft Windows 11 26h1

    OS
    Microsoft
    < 10.0.28000.2269
  • Microsoft Windows Server 2022

    OS
    Microsoft
    < 10.0.20348.5256
  • Microsoft Windows Server 2025

    OS
    Microsoft
    < 10.0.26100.32995
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2025-59287CRITICAL9.8⚠ KEVPL ✓ten sam produkt

RCE w Windows Server Update Service (WSUS) — deserializacja danych

CVE-2026-45602CRITICAL9.1PL ✓ten sam produkt

Podatność typu tampering w Windows DHCP Server umożliwia nieautoryzowaną modyfikację danych

CVE-2026-44815CRITICAL9.8PL ✓ten sam produkt

Stack-based buffer overflow w Windows DHCP Client — zdalne wykonanie kodu

CVE-2026-42904CRITICAL9.6PL ✓ten sam produkt

Heap buffer overflow w Windows TCP/IP umożliwia privilege escalation przez sieć

CVE-2026-47291CRITICAL9.8PL ✓ten sam produkt

RCE przez integer overflow w Windows HTTP.sys (CVE-2026-47291)