PT-2026-47981 · Microsoft · Wininet
Published
2026-06-09
·
Updated
2026-06-09
·
CVE-2026-45592
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Windows Internet (wininet.dll) versions prior to June 2026 patchday
Description
An integer overflow or wraparound in the Windows Internet library (wininet.dll) allows an authorized attacker to elevate privileges locally. This issue occurs within the system plumbing, enabling a user with limited permissions to gain administrative access.
Recommendations
Apply the June 2026 security update to resolve the issue.
Fix
Integer Overflow
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Wininet