| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2026-45584 | Microsoft Defender Remote Code Execution Vulnerability | Microsoft Defender | Critical | 29-05-2026 |
Technical Information
An unauthenticated remote attacker could exploit a heap-based buffer overflow vulnerability in Microsoft Defender by inducing a local user to perform multiple actions that cause Defender to scan a specially crafted malicious file after it has been quarantined, resulting in arbitrary code execution on the affected system.
Patch release date: May 19, 2026
Further information on this vulnerability is available at : CVE-2026-45584