Out-of-bounds read in Windows and Windows Server - CVE-2026-50470
Published: July 17, 2026
Windows
Windows Server
Detailed vulnerability description
The vulnerability allows a remote attacker to disclose sensitive information.
The vulnerability exists due to out-of-bounds read in Windows Network Policy Server SNMP when handling network requests. A remote attacker can send a specially crafted request to disclose sensitive information.
An attacker who successfully exploits this vulnerability could read portions of process memory.