CVE-2026-42982
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
Description
Improper validation of consistency within input in Windows Secure Kernel Mode allows an authorized attacker to elevate privileges locally.
In plain language
AI Act nowThis is a Windows local privilege-escalation bug that could let a logged-in person with limited access gain higher control of the device; if your business uses affected Windows versions, you should act soon.
CVE-2026-42982 is a Windows Secure Kernel Mode local elevation of privilege caused by improper validation of input consistency, allowing an authorized user with low privileges to elevate to higher system privileges on the machine.
What to do now
- Check whether your organization uses any of these: Windows 10, Windows 11, Windows Server 2016/2019/2022/2025.
- For each affected device, identify its exact Windows build/OS version number.
- Compare your build against the fixed versions below, and plan to upgrade each affected system that is below the fixed level:
- Windows 10: fixed in 10.0.14393.9339 (or 10.0.17763.9020 / 10.0.19044.7548 / 10.0.19045.7548)
- Windows 11: fixed in 10.0.22631.7376 (or 10.0.26100.8875 / 10.0.26200.8875 / 10.0.28000.2269)
- Windows Server 2016: fixed in 10.0.14393.9339
- Windows Server 2019: fixed in 10.0.17763.9020
- Windows Server 2022: fixed in 10.0.20348.5386
- Windows Server 2025: fixed in 10.0.26100.33158
- Apply Microsoft’s relevant security update(s) to bring each device to (or beyond) the fixed build level, then confirm the device reports the expected updated build number.
- If patching will be delayed, immediately reduce who can log on with “limited authorization” (least privilege) and review local account access (especially on high-value servers).
CVSS Vector Breakdown
AV:LAttack VectorAC:LAttack ComplexityPR:LPrivileges RequiredUI:NUser InteractionS:UScopeC:HConfidentialityI:HIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
References
- Microsoft and Adobe Patch Tuesday, July 2026 Security Update Reviewen-us·Qualys Security Blog·
- Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilitiesen·Cisco Talos·
- Microsoft Patch Tuesday July 2026 - The AI Acopolypse is Hereen·SANS Internet Storm Center·
- Microsoft July 2026 Patch Tuesday fixes massive 570 flaws, 3 zero-daysen-us·BleepingComputer·
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2026-42982 and every CVE in our database. Create a free account — no credit card required.
Create Free Account