PatchSiren cyber security CVE debrief
CVE-2026-50405 Microsoft CVE debrief
CVE-2026-50405 is a HIGH severity vulnerability in Windows Filtering Platform (WFP) with a CVSS score of 7.8. The CVE record was published on 2026-07-14T18:17:43.033Z and was last modified on 2026-07-16T05:16:23.457Z. The NVD entry is currently Awaiting Analysis. The vulnerability has insufficient granularity of access control, allowing an authorized attacker to elevate privileges locally.
- Vendor
- Microsoft
- Product
- Windows 10 Version 1607
- CVSS
- HIGH 7.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-14
- Original CVE updated
- 2026-07-16
- Advisory published
- 2026-07-14
- Advisory updated
- 2026-07-16
Who should care
Security teams should assess the risk of privilege escalation in their Windows environments. Operators and platform administrators should review the vulnerability's impact on their systems and plan for updates or mitigations.
Technical summary
Insufficient granularity of access control in Windows Filtering Platform (WFP) allows an authorized attacker to elevate privileges locally. The vulnerability has a CVSS vector of CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. Affected systems require updates to restrict WFP access control.
Defensive priority
Apply patches or mitigations to restrict WFP access control and monitor for suspicious activity.
Recommended defensive actions
- Apply vendor patches or updates
- Restrict access to WFP configuration
- Monitor for suspicious activity
- Review compensating controls for exposed systems
- Check relevant monitoring, detection, and logs for exposed assets
Evidence notes
The CVE record and NVD details indicate a HIGH severity vulnerability. Microsoft has a reference for this vulnerability. The vulnerability affects Windows Filtering Platform (WFP) and allows an authorized attacker to elevate privileges locally. Evidence is limited, and defenders should verify the affected scope and vendor guidance.
Official resources
-
CVE-2026-50405 CVE record
CVE.org
-
CVE-2026-50405 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-14T18:17:43.033Z and was last modified on 2026-07-16T05:16:23.457Z. The NVD entry is currently Awaiting Analysis.