Elevation of Privilege Vulnerability in Windows Common Log File System Driver by Microsoft
CVE-2026-44809

7.8HIGH

What is CVE-2026-44809?

A vulnerability exists in the Windows Common Log File System Driver that can be exploited through a use after free condition, allowing an authorized user to potentially gain elevated privileges on the affected system. Attackers could leverage this loophole to execute arbitrary code, leading to unauthorized system access and actions. Microsoft has issued an advisory along with patches to remediate this issue and enhance system security.

Affected Version(s)

Windows 11 Version 24H2 ARM64-based Systems 10.0.26100.0 < 10.0.26100.8655

Windows 11 Version 25H2 ARM64-based Systems 10.0.26200.0 < 10.0.26200.8655

Windows 11 version 26H1 ARM64-based Systems 10.0.28000.0 < 10.0.28000.2269

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.