Denial of Service Vulnerability in Microsoft Defender by Microsoft
CVE-2026-45498

4MEDIUM

Key Information:

Vendor: Microsoft
Status: Microsoft Defender Antimalware Platform
Vendor: CVE Published:; 20 May 2026

Badges

👾 Exploit Exists🦅 CISA Reported📰 News Worthy

What is CVE-2026-45498?

A vulnerability in Microsoft Defender allows attackers to cause a denial of service. An unauthenticated user may exploit this issue to disrupt service functionality, potentially leading to operational interruptions. It is crucial for users of Microsoft Defender to apply relevant patches and updates to mitigate the risk associated with this vulnerability.

CISA has reported CVE-2026-45498

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2026-45498 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Affected Version(s)

Microsoft Defender Antimalware Platform 4.0.0.0 < 4.18.26040.7

News Articles

Techtimes

CVE-2026-41091 CVE-2026-45498

Microsoft Defender Zero-Days Patched: RedSun, UnDefend Exploits Already Used in Live Intrusions

Microsoft pushed out-of-band patches on May 21, 2026, for two actively exploited Windows Defender zero-days — one that lets a low-privileged attacker seize full SYSTEM-level control of any Windows

3 weeks ago