CVE-2026-23666 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 35%

Affected Products (NVD)

Vendor	Product	Version
microsoft	.net_framework	3.5
microsoft	.net_framework	3.5
microsoft	.net_framework	4.7.2
microsoft	.net_framework	3.5
microsoft	.net_framework	4.8
microsoft	.net_framework	3.5
microsoft	.net_framework	4.8.1
microsoft	.net_framework	4.6.2
microsoft	.net_framework	4.7
microsoft	.net_framework	4.7.1
microsoft	.net_framework	4.7.2
microsoft	.net_framework	4.8

𝑥

= Vulnerable software versions

Windows Releases

Platform

Version

Windows 10

1607 (x64, x86)	KB5082411
1809 (arm64, x64, x86)	KB5082413
1809 (arm64, x64, x86)	KB5082414
21H2 (arm64, x64, x86)	KB5082426
21H2 (arm64, x64, x86)	KB5082419
22H2 (arm64, x64, x86)	KB5082419
22H2 (arm64, x64, x86)	KB5082426

Windows 11

22H2 (arm64, x64)	KB5082424
23H2 (arm64, x64)	KB5082424
24H2 (arm64, x64)	KB5082420
25H2 (arm64, x64)	KB5082417
26H1 (arm64, x64)	KB5082421

Windows Server 2012

Server Core	KB5082398
Server Core	KB5082400
Server Core	KB5082403
Standard	KB5082398
Standard	KB5082400
Standard	KB5082403

Windows Server 2012 R2

Server Core	KB5082402
Server Core	KB5082404
Server Core	KB5082406
Standard	KB5082402
Standard	KB5082404
Standard	KB5082406

Windows Server 2022

23H2 Server Core	KB5082418
Server Core	KB5082425
Server Core	KB5082427
Standard	KB5082425
Standard	KB5082427

Windows Server 2025

Server Core	KB5082417
Standard	KB5082417

Common Weakness Enumeration

CWE-755 - Improper Handling of Exceptional Conditions
The software does not handle or incorrectly handles an exceptional condition.

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23666