CVE-2026-54992
Microsoft Message Queuing Queue Manager Remote Code Execution Vulnerability
Description
Heap-based buffer overflow in Windows Message Queuing Queue Manager allows an unauthorized attacker to execute code locally.
In plain language
AI Act nowThis is a Windows Message Queuing Queue Manager flaw that can let someone run code on your machine if they already have local access; most small businesses won’t be hit unless an attacker gets onto a device first.
CVE-2026-54992 is a local heap-based buffer overflow in Microsoft Message Queuing Queue Manager that can allow arbitrary code execution by an attacker with local access and no need for authentication or user interaction.
What to do now
- Check whether the affected Windows Message Queuing Queue Manager component is installed/enabled on your devices (especially servers).
- Identify your current Windows build/version.
- Update each affected system to the fixed version listed below:
- Windows 10: 10.0.14393.9339 or 10.0.17763.9020 or 10.0.19044.7548 or 10.0.19045.7548
- Windows 11: 10.0.26100.8875 or 10.0.26200.8875 or 10.0.28000.2525
- Windows Server 2012: 6.2.9200.26226
- Windows Server 2012 R2: 6.3.9600.23291
- Windows Server 2016: 10.0.14393.9339
- Windows Server 2019: 10.0.17763.9020
- Windows Server 2022: 10.0.20348.5386
- If you can’t update immediately, restrict who can get local access to those machines (tighter admin access, remove unnecessary accounts, and reduce chances of an attacker landing on the host).
CVSS Vector Breakdown
AV:LAttack VectorAC:LAttack ComplexityPR:NPrivileges RequiredUI:NUser InteractionS:UScopeC:HConfidentialityI:HIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
Attack Graph
Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/⌘ + scroll to zoom, or go fullscreen.
MITRE ATT&CK
1 techniqueReferences
- Microsoft and Adobe Patch Tuesday, July 2026 Security Update Reviewen-us·Qualys Security Blog·
- Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilitiesen·Cisco Talos·
- Microsoft Patch Tuesday July 2026 - The AI Acopolypse is Hereen·SANS Internet Storm Center·
- Microsoft July 2026 Patch Tuesday fixes massive 570 flaws, 3 zero-daysen-us·BleepingComputer·
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2026-54992 and every CVE in our database. Create a free account — no credit card required.
Create Free Account