CVE-2026-41089

EUVD-2026-29681
Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Windows Releases
Platform
Version
Windows Server 2012
Server Core
KB5087470
Standard
KB5087470
Windows Server 2012 R2
Server Core
KB5087471
Standard
KB5087471
Windows Server 2016
Server Core
KB5087537
Standard
KB5087537
Windows Server 2019
Server Core
KB5087538
Standard
KB5087538
Windows Server 2022
23H2 Server Core
KB5087541
Server Core
KB5087545
Standard
KB5087545
Windows Server 2025
Server Core
KB5087539
Standard
KB5087539
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41089