Improper access control in Windows and Windows Server - CVE-2026-50418
Published: July 17, 2026
Windows
Windows Server
Detailed vulnerability description
The vulnerability allows a local attacker to bypass an authentication feature and disclose sensitive information.
The vulnerability exists due to improper access control in Windows System when handling local access to the system. A local attacker can exploit the access control weakness to bypass an authentication feature and disclose sensitive information.
The vulnerability allows impersonation and could also enable modification of disclosed information.