You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-45605
About this tag
CVE-2026-45605 is a Windows Bluetooth Service elevation-of-privilege vulnerability disclosed by Microsoft on June 9, 2026. Rated Important, it stems from a use-after-free flaw that allows local privilege escalation with low complexity and low privileges, requiring no user interaction. Microsoft patched it across supported Windows client and server releases in the June security update cycle. Despite being assessed as 'exploitation less likely,' the vulnerability's low attack requirements make it a priority for administrators. This tag covers discussions about the technical details, patching guidance, and risk assessment of CVE-2026-45605, particularly the tension between its low exploitability score and favorable conditions for attackers.
Microsoft disclosed CVE-2026-45605 on June 9, 2026, as an Important-rated Windows Bluetooth Service elevation-of-privilege vulnerability caused by a use-after-free flaw and patched it across supported Windows client and server releases through the June security update cycle. The interesting part...