Data Deduplication Elevation of Privilege Vulnerability_CVE-2026-41095

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Basic Information

ID CVE-2026-41095

Source microsoft

Published May 12, 2026 at 16:58

Modified May 12, 2026 at 17:53

Affected Product

Vendor Microsoft

Product Windows Server 2012 R2

Version 6.3.9600.0

Affected Versions Microsoft Windows Server 2012 R2 6.3.9600.0
Microsoft Windows Server 2012 R2 (Server Core installation) 6.3.9600.0
Microsoft Windows Server 2016 10.0.14393.0
Microsoft Windows Server 2016 (Server Core installation) 10.0.14393.0
Microsoft Windows Server 2019 10.0.17763.0
Microsoft Windows Server 2019 (Server Core installation) 10.0.17763.0
Microsoft Windows Server 2022 10.0.20348.0
Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.0
Microsoft Windows Server 2025 10.0.26100.0
Microsoft Windows Server 2025 (Server Core installation) 10.0.26100.0

CWE Classification

CWE-416

References

msrc.microsoft.com /update-guide/vulnerability/CVE-2026-41095

{
    "lastseen": "",
    "description": "",
    "published": "2026-05-12T16:58:51.659Z",
    "modified": "2026-05-12T17:53:50.563Z",
    "type": "cve",
    "title": "Data Deduplication Elevation of Privilege Vulnerability",
    "source": "microsoft",
    "references": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41095",
    "id": "CVE-2026-41095",
    "bulletinFamily": "",
    "cwe": [
        "CWE-416"
    ],
    "cvelist": null,
    "sourceData": "Microsoft Windows Server 2012 R2 6.3.9600.0\nMicrosoft Windows Server 2012 R2 (Server Core installation) 6.3.9600.0\nMicrosoft Windows Server 2016 10.0.14393.0\nMicrosoft Windows Server 2016 (Server Core installation) 10.0.14393.0\nMicrosoft Windows Server 2019 10.0.17763.0\nMicrosoft Windows Server 2019 (Server Core installation) 10.0.17763.0\nMicrosoft Windows Server 2022 10.0.20348.0\nMicrosoft Windows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.0\nMicrosoft Windows Server 2025 10.0.26100.0\nMicrosoft Windows Server 2025 (Server Core installation) 10.0.26100.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Windows Server 2012 R2",
    "version": "6.3.9600.0",
    "vendor": "Microsoft",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Basic Information

Affected Product

CWE Classification

References

💭 Join the Security Discussion ❌ Cancel Reply