CVE-2026-21508
published 2026-02-10CVE-2026-21508: Improper authentication in Windows Storage allows an authorized attacker to elevate privileges locally.
high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
Improper authentication in Windows Storage allows an authorized attacker to elevate privileges locally.
Affected
42 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10_1607 | < 10.0.14393.8868 | 10.0.14393.8868 |
| microsoft | windows_10_1809 | < 10.0.17763.8389 | 10.0.17763.8389 |
| microsoft | windows_10_21h2 | < 10.0.19044.6937 | 10.0.19044.6937 |
| microsoft | windows_10_22h2 | < 10.0.19045.6937 | 10.0.19045.6937 |
| microsoft | windows_10_version_1607 | >= 10.0.14393.0 < 10.0.14393.8868 | 10.0.14393.8868 |
| microsoft | windows_10_version_1809 | >= 10.0.17763.0 < 10.0.17763.8389 | 10.0.17763.8389 |
| microsoft | windows_10_version_21h2 | >= 10.0.19044.0 < 10.0.19044.6937 | 10.0.19044.6937 |
| microsoft | windows_10_version_22h2 | >= 10.0.19045.0 < 10.0.19045.6937 | 10.0.19045.6937 |
| microsoft | windows_11_23h2 | < 10.0.22631.6649 | 10.0.22631.6649 |
| microsoft | windows_11_24h2 | < 10.0.26100.7781 | 10.0.26100.7781 |
| microsoft | windows_11_25h2 | < 10.0.26200.7781 | 10.0.26200.7781 |
| microsoft | windows_11_version_22h3 | >= 10.0.22631.0 < 10.0.22631.6649 | 10.0.22631.6649 |
| microsoft | windows_11_version_23h2 | >= 10.0.22631.0 < 10.0.22631.6649 | 10.0.22631.6649 |
| microsoft | windows_11_version_24h2 | >= 10.0.26100.0 < 10.0.26100.7840 | 10.0.26100.7840 |
| microsoft | windows_11_version_25h2 | >= 10.0.26200.0 < 10.0.26200.7840 | 10.0.26200.7840 |
| microsoft | windows_11_version_26h1 | >= 10.0.28000.0 < 10.0.28000.1575 | 10.0.28000.1575 |
| microsoft | windows_server_2012 | — | — |
| microsoft | windows_server_2012 | >= 6.2.9200.0 < 6.2.9200.25923 | 6.2.9200.25923 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.23022 | 6.3.9600.23022 |
| microsoft | windows_server_2016 | < 10.0.14393.8868 | 10.0.14393.8868 |
| microsoft | windows_server_2016 | >= 10.0.14393.0 < 10.0.14393.8868 | 10.0.14393.8868 |
| microsoft | windows_server_2019 | < 10.0.17763.8389 | 10.0.17763.8389 |
| microsoft | windows_server_2019 | >= 10.0.17763.0 < 10.0.17763.8389 | 10.0.17763.8389 |
| microsoft | windows_server_2022 | < 10.0.20348.4711 | 10.0.20348.4711 |
| microsoft | windows_server_2022 | >= 10.0.20348.0 < 10.0.20348.4773 | 10.0.20348.4773 |