afd sys

Microsoft has published an advisory for CVE-2026-21238 — an elevation-of-privilege issue in the Windows Ancillary Function Driver for WinSock (AFD, afd.sys) — and the security community is treating it as a high-priority patch-forcing vulnerability for endpoints and servers that accept local...

Microsoft’s public advisory entry for CVE-2026-21241 records a new elevation-of-privilege issue tied to the Windows Ancillary Function Driver for WinSock (AFD, afd.sys), but technical detail in the advisory is intentionally sparse; defenders must therefore treat the vendor’s update mapping as...

Microsoft’s security tracker now shows CVE-2026-21236 as an elevation-of-privilege issue in the Windows Ancillary Function Driver for WinSock (AFD.sys), a kernel‑mode driver that sits at the heart of Windows’ networking stack; the vendor entry and multiple community trackers confirm the CVE but...

Microsoft’s Security Update Guide lists a new Windows kernel vulnerability, CVE‑2026‑20860, in the Windows Ancillary Function Driver for WinSock (afd.sys) that Microsoft categorizes as an elevation‑of‑privilege (EoP) issue; the vendor has published an Update Guide entry and a security update...

Microsoft’s Security Update Guide lists CVE-2026-20810 as a vulnerability in the Windows Ancillary Function Driver for WinSock (afd.sys) where the driver “frees memory not on the heap,” allowing an authorized local attacker to elevate privileges on an affected system—an escalation that can turn...