Integer overflow in Windows and Windows Server - CVE-2026-54115
Published: July 17, 2026
Windows
Windows Server
Detailed vulnerability description
The vulnerability allows a local user to escalate privileges.
The vulnerability exists due to integer overflow or wraparound in Windows Active Directory when processing crafted local input. A local user can trigger the integer overflow to escalate privileges.
The attacker would gain the rights of the user that is running the affected application.