PT-2026-58145 · Microsoft · Windows

Published

2026-07-14

·

Updated

2026-07-14

·

CVE-2026-49170

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Windows (affected versions not specified)
Description Insufficient granularity of access control in the Windows StateRepository API allows an authorized attacker to elevate privileges locally.
Recommendations Apply the July patch to resolve this issue.

Fix

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-49170

Affected Products

Windows