cve-2026-45603

CVE-2026-45603 is a Windows Ancillary Function Driver for WinSock (AFD.sys) local privilege escalation vulnerability published by Microsoft on June 9, 2026. This elevation-of-privilege flaw allows a local authenticated attacker to gain higher privileges on affected Windows systems. While not remotely exploitable, it is a serious post-compromise threat that can turn an initial foothold into full system control. Discussions on WindowsForum.com emphasize the importance of applying the security patch promptly and understanding the local attack vector. Administrators are advised to prioritize this update as part of their regular patch management routine.