PT-2026-58462 · Microsoft · Windows 11 Version 24H2+2

Published

2026-07-14

·

Updated

2026-07-14

·

CVE-2026-50488

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Improper neutralization of special elements used in a command ('command injection') in Windows Clipboard User Service allows an authorized attacker to elevate privileges locally.

Fix

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-50488

Affected Products

Windows 11 Version 24H2
Windows 11 Version 25H2
Windows Server 2025