CVE-2026-50420
CVE-2026-50420 affects Windows HTTP.sys. It is an out-of-bounds read in HTTP.sys that can allow a local, unauthenticated attacker to disclose information. The CVE is listed with a CVSS v3.1 base score of 6.2 (Medium) and requires local access with no user interaction. Public references show multi...