You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-48565
About this tag
CVE-2026-48565 is an Important-rated elevation-of-privilege vulnerability in Windows Narrator Braille, disclosed by Microsoft on June 9, 2026. The flaw stems from an untrusted search path that allows a local authenticated attacker to gain SYSTEM privileges. Unlike typical cumulative Windows updates, the patch is delivered as a BRLTTY feature update through Windows Accessibility settings. This vulnerability highlights that Windows' assistive-technology stack is now part of the privilege boundary administrators must inventory, update, and defend. Discussions on WindowsForum cover the technical details, the unusual patch mechanism, and the broader operational implications for enterprise IT security.
Microsoft published CVE-2026-48565 on June 9, 2026, identifying an Important-rated Windows Narrator Braille elevation-of-privilege vulnerability caused by an untrusted search path that can let a local authenticated attacker gain SYSTEM privileges. The patch path is not a normal cumulative...