May 2026: Microsoft Defender Elevation of Privilege Vulnerability
CVE-2026-41091 Published on May 20, 2026
Microsoft Defender Elevation of Privilege Vulnerability
Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally.
Weakness Type
What is an insecure temporary file Vulnerability?
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
CVE-2026-41091 has been classified to as an insecure temporary file vulnerability or weakness.
Products Associated with CVE-2026-41091
Want to know whenever a new CVE is published for Microsoft Malware Protection Engine? stack.watch will email you.
