May 2026: Microsoft Defender Denial of Service Vulnerability
CVE-2026-45498 Published on May 20, 2026
Microsoft Defender Denial of Service Vulnerability
Microsoft Defender Denial of Service Vulnerability
Known Exploited Vulnerability
This Microsoft Defender Denial of Service Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Microsoft Defender contains an unspecified vulnerability that allows for denial of service.
The following remediation steps are recommended / required by June 3, 2026: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Weakness Type
What is a Resource Exhaustion Vulnerability?
The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
CVE-2026-45498 has been classified to as a Resource Exhaustion vulnerability or weakness.
Products Associated with CVE-2026-45498
Want to know whenever a new CVE is published for Microsoft Defender? stack.watch will email you.
