CVE-2026-21255 Windows Hyper-V Security Feature Bypass Vulnerability

...

CVE-2026-21255

CVE-2026-21255 is a Windows Hyper-V security feature bypass vulnerability described as improper access control that enables an authorized local attacker to bypass a security feature. Publicly available sources identify Hyper-V as the affected component, with the root cause tied to access-control ...

CVE-2026-21247 Windows Hyper-V Remote Code Execution Vulnerability

...

CVE-2026-21247

CVE-2026-21247 is an input-validation flaw in Windows Hyper-V that can allow a locally authenticated attacker to execute arbitrary code. The vulnerability arises from improper handling of input, with a CVSSv3.1 base score of 7.3 (HIGH), indicating local attack vector, low attack complexity, and r...

CVE-2026-21248 Windows Hyper-V Remote Code Execution Vulnerability

...

CVE-2026-21248 Windows Hyper-V Remote Code Execution Vulnerability

...

CVE-2026-21248

CVE-2026-21248 describes a heap-based buffer overflow in Windows Hyper-V. The vulnerability allows an authorized, locally-privileged attacker to execute code on the affected host. The CVSS v3.1 metrics indicate LOCAL attack vector, LOW attack complexity and LOW privileges required, with UI access...

CVE-2026-21248

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally...

Windows Hyper-V Remote Code Execution Vulnerability

Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally...

Windows Hyper-V Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally...

Windows Hyper-V Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally...

Windows Hyper-V Security Feature Bypass Vulnerability

Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security feature locally...

Microsoft Hyper-V 缓冲区错误漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. A buffer overflow vulnerability exists in Microsoft Hyper-V. The vulnerability stems from a failure to properly validate the length and size of...

Microsoft Hyper-V 安全漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. A code execution vulnerability exists in Microsoft Hyper-V, which can be exploited by an attacker to execute arbitrary code on a system...

Microsoft Hyper-V 访问控制错误漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. An access control error vulnerability exists in Microsoft Hyper-V. The vulnerability stems from a flaw in the access control mechanism and can be...

PT-2026-7357

Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security feature locally...

PT-2026-7352

Name of the Vulnerable Software and Affected Versions Windows Hyper-V affected versions not specified Description A heap-based buffer overflow exists in Windows Hyper-V, potentially allowing an attacker to execute code locally. Exploitation may allow an attacker to execute arbitrary code and impa...

PT-2026-7351

Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally...

Microsoft Hyper-V 安全漏洞

Microsoft Hyper-V is an application developed by Microsoft Corporation in the United States. It is a system management program that enables desktop virtualization. There are security vulnerabilities in Microsoft Hyper-V. Attackers can exploit these vulnerabilities to execute code remotely. The...

KLA90878 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface, obtain sensitive information, cause denial of service. Below is a...