cvss integrity availability

The cvss integrity availability tag covers discussions of vulnerabilities where the CVSS vector emphasizes high integrity and availability impact over confidentiality. A key example is CVE-2026-35438, a Windows Admin Center elevation-of-privilege flaw that allows an attacker to abuse the update path to install arbitrary versions from Microsoft's catalog. This bug is characterized by low confidentiality impact but high integrity and availability impact, as it enables altering or disrupting the management plane rather than stealing data. The tag is relevant for security researchers and IT professionals analyzing CVSS scoring nuances, particularly for vulnerabilities that target system integrity and availability in Windows enterprise tools.