Heap-based buffer overflow in Windows and Windows Server - CVE-2026-50679
Published: July 17, 2026
Windows
Windows Server
Detailed vulnerability description
The vulnerability allows a local user to escalate privileges.
The vulnerability exists due to heap-based buffer overflow in Windows Search Component when processing input. A local user can trigger the flaw to escalate privileges.
Successful exploitation could allow elevation from Medium Integrity Level to a High Integrity Level and gain SYSTEM privileges.