kernel vulnerabilities

Microsoft has published an advisory for CVE-2026-23671: a kernel‑level race condition in the Windows Bluetooth RFCOM Protocol Driver that can be abused by a locally authenticated, low‑privilege user to escalate to SYSTEM — and Microsoft’s update guidance indicates fixes were released on March...

The one-line statement from Microsoft’s CVE page — “Azure Linux includes this open‑source library and is therefore potentially affected” — is factual and actionable for Azure Linux users, but it is not a technical guarantee that no other Microsoft product or artifact could contain the same...

Microsoft’s security tracker now shows CVE-2026-21236 as an elevation-of-privilege issue in the Windows Ancillary Function Driver for WinSock (AFD.sys), a kernel‑mode driver that sits at the heart of Windows’ networking stack; the vendor entry and multiple community trackers confirm the CVE but...

Microsoft has recorded a new elevation-of-privilege entry tied to the Windows Cloud Files Mini Filter Driver — CVE-2026-20857 — and enterprise defenders must treat this class of kernel-mode bug as high priority: the Cloud Files mini-filter (cldflt.sys) sits at the privileged user→kernel boundary...