CVE-2026-50687 is a high-scoring Windows Win32k elevation-of-privilege vulnerability that can let a locally authenticated attacker escape their existing security boundary and gain substantially greater control of a vulnerable PC or server. Microsoft addressed the flaw in its July 14, 2026...