Windows Shell Information Disclosure Vulnerability_CVE-2026-42906

5.5 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Basic Information

ID CVE-2026-42906

Source microsoft

Published Jun 9, 2026 at 17:06

Modified Jun 9, 2026 at 17:49

Affected Product

Vendor Microsoft

Product Windows 10 Version 21H2

Version 10.0.19044.0

Affected Versions Microsoft Windows 10 Version 21H2 10.0.19044.0
Microsoft Windows 10 Version 22H2 10.0.19045.0
Microsoft Windows 11 version 23H2 10.0.22631.0
Microsoft Windows 11 Version 23H2 10.0.22631.0
Microsoft Windows 11 Version 24H2 10.0.26100.0
Microsoft Windows 11 Version 25H2 10.0.26200.0
Microsoft Windows 11 version 26H1 10.0.28000.0
Microsoft Windows Server 2022 10.0.20348.0
Microsoft Windows Server 2025 10.0.26100.0
Microsoft Windows Server 2025 (Server Core installation) 10.0.26100.0

CWE Classification

CWE-200

References

msrc.microsoft.com /update-guide/vulnerability/CVE-2026-42906

{
    "lastseen": "",
    "description": "",
    "published": "2026-06-09T17:06:00.460Z",
    "modified": "2026-06-09T17:49:36.132Z",
    "type": "cve",
    "title": "Windows Shell Information Disclosure Vulnerability",
    "source": "microsoft",
    "references": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42906",
    "id": "CVE-2026-42906",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "Microsoft Windows 10 Version 21H2 10.0.19044.0\nMicrosoft Windows 10 Version 22H2 10.0.19045.0\nMicrosoft Windows 11 version 23H2 10.0.22631.0\nMicrosoft Windows 11 Version 23H2 10.0.22631.0\nMicrosoft Windows 11 Version 24H2 10.0.26100.0\nMicrosoft Windows 11 Version 25H2 10.0.26200.0\nMicrosoft Windows 11 version 26H1 10.0.28000.0\nMicrosoft Windows Server 2022 10.0.20348.0\nMicrosoft Windows Server 2025 10.0.26100.0\nMicrosoft Windows Server 2025 (Server Core installation) 10.0.26100.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Windows 10 Version 21H2",
    "version": "10.0.19044.0",
    "vendor": "Microsoft",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Basic Information

Affected Product

CWE Classification

References

💭 Join the Security Discussion ❌ Cancel Reply