CVE-2026-50655, a Windows Media Foundation remote code execution vulnerability fixed in Microsoft’s July 14, 2026 security updates, can let an unauthenticated attacker run code after a user interacts with malicious media content. The flaw carries a CVSS 3.1 score of 7.8 and affects supported...