Use-after-free in Windows and Windows Server - CVE-2026-50374
Published: July 17, 2026
Windows
Windows Server
Detailed vulnerability description
The vulnerability allows an attacker with physical access to elevate privileges.
The vulnerability exists due to use-after-free in Windows Cloud Files Mini Filter Driver when processing local input. An attacker with physical access can trigger the use-after-free condition to elevate privileges.
Successful exploitation could allow the attacker to gain SYSTEM privileges.