CVE-2026-21253: Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally.

high7CVSS 3.1

AVLACHPRLUINSUCHIHAH

Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally.

Affected

42 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	windows_10_1607	< 10.0.14393.8868	10.0.14393.8868
microsoft	windows_10_1809	< 10.0.17763.8389	10.0.17763.8389
microsoft	windows_10_21h2	< 10.0.19044.6937	10.0.19044.6937
microsoft	windows_10_22h2	< 10.0.19045.6937	10.0.19045.6937
microsoft	windows_10_version_1607	>= 10.0.14393.0 < 10.0.14393.8868	10.0.14393.8868
microsoft	windows_10_version_1809	>= 10.0.17763.0 < 10.0.17763.8389	10.0.17763.8389
microsoft	windows_10_version_21h2	>= 10.0.19044.0 < 10.0.19044.6937	10.0.19044.6937
microsoft	windows_10_version_22h2	>= 10.0.19045.0 < 10.0.19045.6937	10.0.19045.6937
microsoft	windows_11_23h2	< 10.0.22631.6649	10.0.22631.6649
microsoft	windows_11_24h2	< 10.0.26100.7781	10.0.26100.7781
microsoft	windows_11_25h2	< 10.0.26200.7781	10.0.26200.7781
microsoft	windows_11_version_22h3	>= 10.0.22631.0 < 10.0.22631.6649	10.0.22631.6649
microsoft	windows_11_version_23h2	>= 10.0.22631.0 < 10.0.22631.6649	10.0.22631.6649
microsoft	windows_11_version_24h2	>= 10.0.26100.0 < 10.0.26100.7840	10.0.26100.7840
microsoft	windows_11_version_25h2	>= 10.0.26200.0 < 10.0.26200.7840	10.0.26200.7840
microsoft	windows_11_version_26h1	>= 10.0.28000.0 < 10.0.28000.1575	10.0.28000.1575
microsoft	windows_server_2012	—	—
microsoft	windows_server_2012	>= 6.2.9200.0 < 6.2.9200.25923	6.2.9200.25923
microsoft	windows_server_2012_r2	>= 6.3.9600.0 < 6.3.9600.23022	6.3.9600.23022
microsoft	windows_server_2016	< 10.0.14393.8868	10.0.14393.8868
microsoft	windows_server_2016	>= 10.0.14393.0 < 10.0.14393.8868	10.0.14393.8868
microsoft	windows_server_2019	< 10.0.17763.8389	10.0.17763.8389
microsoft	windows_server_2019	>= 10.0.17763.0 < 10.0.17763.8389	10.0.17763.8389
microsoft	windows_server_2022	< 10.0.20348.4711	10.0.20348.4711
microsoft	windows_server_2022	>= 10.0.20348.0 < 10.0.20348.4773	10.0.20348.4773