CVE-2026-21533

⚠ KEVEPSS 20.2%

Microsoft Windows Improper Privilege Management Vulnerability

Added to CISA KEV: 2/10/2026

Description

Microsoft Windows Remote Desktop Services contains an improper privilege management vulnerability that could allow an authorized attacker to elevate privileges locally.

Affected packages (0)

No package mapping in OSV.