Jul 2026: Extensible Storage Engine (ESENT) Elevation of Privilege Vulnerability
CVE-2026-57088 Published on July 14, 2026

Extensible Storage Engine (ESENT) Elevation of Privilege Vulnerability
Improper access control in Extensible Storage Engine (ESENT) allows an authorized attacker to elevate privileges locally.

Vendor Advisory NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2026-57088 has been classified to as an Authorization vulnerability or weakness.


Products Associated with CVE-2026-57088

Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.

 
 
 
 

Affected Versions

Microsoft Windows 10 Version 1809: Microsoft Windows Server 2019: Microsoft Windows Server 2019 (Server Core installation): Microsoft Windows Server 2022: Microsoft Windows Server 2025: Microsoft Windows Server 2025 (Server Core installation):