Windows Netlogon Remote Code Execution Vulnerability_CVE-2026-41089

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Basic Information

ID CVE-2026-41089

Source microsoft

Published May 12, 2026 at 16:58

Modified May 12, 2026 at 17:53

Affected Product

Vendor Microsoft

Product Windows Server 2012

Version 6.2.9200.0

Affected Versions Microsoft Windows Server 2012 6.2.9200.0
Microsoft Windows Server 2012 (Server Core installation) 6.2.9200.0
Microsoft Windows Server 2012 R2 6.3.9600.0
Microsoft Windows Server 2012 R2 (Server Core installation) 6.3.9600.0
Microsoft Windows Server 2016 10.0.14393.0
Microsoft Windows Server 2016 (Server Core installation) 10.0.14393.0
Microsoft Windows Server 2019 10.0.17763.0
Microsoft Windows Server 2019 (Server Core installation) 10.0.17763.0
Microsoft Windows Server 2022 10.0.20348.0
Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.0
Microsoft Windows Server 2025 10.0.26100.0
Microsoft Windows Server 2025 (Server Core installation) 10.0.26100.0

CWE Classification

CWE-121

References

msrc.microsoft.com /update-guide/vulnerability/CVE-2026-41089

{
    "lastseen": "",
    "description": "",
    "published": "2026-05-12T16:58:50.091Z",
    "modified": "2026-05-12T17:53:49.424Z",
    "type": "cve",
    "title": "Windows Netlogon Remote Code Execution Vulnerability",
    "source": "microsoft",
    "references": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41089",
    "id": "CVE-2026-41089",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121"
    ],
    "cvelist": null,
    "sourceData": "Microsoft Windows Server 2012 6.2.9200.0\nMicrosoft Windows Server 2012 (Server Core installation) 6.2.9200.0\nMicrosoft Windows Server 2012 R2 6.3.9600.0\nMicrosoft Windows Server 2012 R2 (Server Core installation) 6.3.9600.0\nMicrosoft Windows Server 2016 10.0.14393.0\nMicrosoft Windows Server 2016 (Server Core installation) 10.0.14393.0\nMicrosoft Windows Server 2019 10.0.17763.0\nMicrosoft Windows Server 2019 (Server Core installation) 10.0.17763.0\nMicrosoft Windows Server 2022 10.0.20348.0\nMicrosoft Windows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.0\nMicrosoft Windows Server 2025 10.0.26100.0\nMicrosoft Windows Server 2025 (Server Core installation) 10.0.26100.0",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Windows Server 2012",
    "version": "6.2.9200.0",
    "vendor": "Microsoft",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Basic Information

Affected Product

CWE Classification

References

💭 Join the Security Discussion ❌ Cancel Reply