CVE-2026-50509
Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability
Description
Deserialization of untrusted data in Windows Wireless Wide Area Network Service allows an authorized attacker to elevate privileges locally.
In plain language
AI Act nowA Windows networking feature (WwanSvc) has a flaw where someone who already has local access can raise their privileges to run as the highest system level—this is serious for businesses that let untrusted people reach a PC.
CVE-2026-50509 is a local privilege escalation in Windows Wireless Wide Area Network Service (WwanSvc) caused by unsafe deserialization of untrusted data, allowing an authorized local attacker to gain higher system privileges without user interaction.
What to do now
- Check your exact Windows version/build (Windows 10/11 or Windows Server 2016/2019/2025) and whether Wireless Wide Area Network Service (WwanSvc) is installed/enabled on affected machines.
- Update each affected machine to a fixed build listed by Microsoft for your specific OS.
- Reboot after patching, then verify the new OS build number matches the fixed version for that branch.
- If patching is delayed, restrict who can obtain local access to the affected machines (physical access, local accounts, remote helpdesk sessions), and review local login/activity logs for suspicious behavior.
CVSS Vector Breakdown
AV:LAttack VectorAC:LAttack ComplexityPR:LPrivileges RequiredUI:NUser InteractionS:UScopeC:HConfidentialityI:HIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
Attack Graph
Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/⌘ + scroll to zoom, or go fullscreen.
MITRE ATT&CK
3 techniquesReferences
- Microsoft and Adobe Patch Tuesday, July 2026 Security Update Reviewen-us·Qualys Security Blog·
- Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilitiesen·Cisco Talos·
- Microsoft Patch Tuesday July 2026 - The AI Acopolypse is Hereen·SANS Internet Storm Center·
- Microsoft July 2026 Patch Tuesday fixes massive 570 flaws, 3 zero-daysen-us·BleepingComputer·
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2026-50509 and every CVE in our database. Create a free account — no credit card required.
Create Free Account