<< Back
CVE Number Vulnerability Product Severity Date
CVE-2026-44810 Microsoft Cryptographic Services Elevation of Privilege Vulnerability Windows 11, Windows Server Critical 01-07-2026

Technical Information

An unauthenticated attacker who has obtained local access to a vulnerable system can exploit an improper authentication flaw in Microsoft Cryptographic Services by executing a specially crafted application or inducing a local user to open a malicious file, resulting in elevation of privilege to SYSTEM level.

Patch release date: Jun 09, 2026
Further information on this vulnerability is available at : CVE-2026-44810

Affected Software

Windows Server 2022,
Windows Server 2022 (Server Core installation),
Windows Server 2025 (Server Core installation),
Windows 11 Version 25H2 for ARM64-based Systems,
Windows 11 Version 25H2 for x64-based Systems,
Windows 11 Version 23H2 for ARM64-based Systems,
Windows 11 Version 23H2 for x64-based Systems,
Windows 11 Version 24H2 for ARM64-based Systems,
Windows 11 Version 24H2 for x64-based Systems,
Windows Server 2025,
Windows 11 version 26H1 for x64-based Systems,
Windows 11 Version 26H1 for ARM64-based Systems