CVE Tools

CVE-2026-50382

DirectX Graphics Kernel Remote Code Execution Vulnerability

Published: Jul 14, 2026Updated: Jul 15, 2026 Sources: CVE List NVDCWE-822

Description

Untrusted pointer dereference in Windows DirectX allows an authorized attacker to execute code locally.

In plain language

AI Act now

CVE-2026-50382 is a Windows DirectX flaw that can allow someone with access to a targeted machine to run their code—your business should update if you use affected Windows versions.

Executive summary

CVE-2026-50382 is a DirectX flaw (CWE-822: Untrusted pointer dereference) that enables local code execution by an authenticated/authorized attacker leveraging untrusted pointer handling in Windows’ graphics kernel components.

If affected, business impact
Full system takeoverMalware execution on serversService disruptionCredential theft risk

What to do now

  1. Check which exact Windows edition and version/build you run (Windows 10, Windows 11, or Windows Server 2019/2022/2025) and whether it matches any vulnerable build.
  2. Update Windows to the fixed build for your specific version:
    • Windows 10: 10.0.17763.9020 or 10.0.19044.7548 or 10.0.19045.7548
    • Windows 11: 10.0.26100.8875 or 10.0.26200.8875 or 10.0.28000.2269
    • Windows Server 2019: 10.0.17763.9020
    • Windows Server 2022: 10.0.20348.5386
    • Windows Server 2025: 10.0.26100.33158
  3. If you cannot patch immediately, treat any machines that have direct user/administrative access as high-risk and restrict who can log on or administer those systems until updates are applied.
  4. After updating, verify the Windows version/build number changed to one of the fixed values above and restart if your patch process requires it.
Usually a quick update

CVSS Vector Breakdown

AV:LAC:LPR:LUI:NS:CC:HI:HA:H
Exploitability
AV:LAttack Vector
Local
AC:LAttack Complexity
Low
PR:LPrivileges Required
Low
UI:NUser Interaction
None
Scope
S:CScope
Changed
Impact
C:HConfidentiality
High
I:HIntegrity
High
A:HAvailability
High

Weaknesses

Affected Products

and 6 more affected products View all →

Exploitability

No known exploits, KEV entries, or remediation guidance available for this vulnerability yet.

References

4

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2026-50382 and every CVE in our database. Create a free account — no credit card required.

Create Free Account
Plain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows