PT-2026-58404 · Microsoft · Windows Internal System User Profile
Published
2026-07-14
·
Updated
2026-07-15
·
CVE-2026-50425
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Windows Internal System User Profile (affected versions not specified)
Description
A use after free issue in the Windows Internal System User Profile allows an authorized attacker to elevate privileges locally. Use after free is a memory corruption flaw that occurs when an application continues to use a pointer after it has been freed, which can be exploited to execute arbitrary code or gain higher permissions.
Recommendations
Install the July updates to resolve this issue.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows Internal System User Profile