Integer overflow in Windows and Windows Server - CVE-2026-50298
Published: July 17, 2026
Windows
Windows Server
Detailed vulnerability description
The vulnerability allows an attacker with physical access to escalate privileges.
The vulnerability exists due to integer overflow or wraparound in Windows Spaceport.sys when processing crafted input through physical access to the system. An attacker with physical access can trigger the flaw to escalate privileges.
Successful exploitation could allow the attacker to obtain SYSTEM privileges.