May 2026: Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2026-40402 Published on May 12, 2026
Windows Hyper-V Elevation of Privilege Vulnerability
Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.
Weakness Type
What is a Dangling pointer Vulnerability?
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.
CVE-2026-40402 has been classified to as a Dangling pointer vulnerability or weakness.
Products Associated with CVE-2026-40402
stack.watch emails you whenever new vulnerabilities are published in Microsoft Windows Server 2022 or Microsoft Windows 11 23h2. Just hit a watch button to start following.
Affected Versions
Microsoft Windows 11 version 22H3:- Version 10.0.22631.0 and below 10.0.22631.7079 is affected.
- Version 10.0.22631.0 and below 10.0.22631.7079 is affected.
- Version 10.0.20348.0 and below 10.0.20348.5139 is affected.