You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-35416
About this tag
CVE-2026-35416 is a Windows Ancillary Function Driver for WinSock (AFD.sys) elevation-of-privilege vulnerability disclosed by Microsoft on May 12, 2026. It affects supported Windows client and server releases and was remediated through the regular Patch Tuesday security update channel. This local kernel-adjacent bug resides in a networking component present across most Windows systems. It does not allow remote anonymous exploitation but can turn an attacker's existing foothold into full system control. Discussions on WindowsForum focus on understanding the vulnerability's impact, applying the official patch, and mitigating risks in enterprise environments. The tag covers disclosure details, affected versions, and practical guidance for securing systems against this privilege escalation threat.
Microsoft disclosed CVE-2026-35416 on May 12, 2026, as a Windows Ancillary Function Driver for WinSock elevation-of-privilege vulnerability affecting supported Windows client and server releases, with remediation delivered through the regular Patch Tuesday security update channel. The short...