CVE-2026-42904: windows 10 21h2 vulnerability

Heap-based buffer overflow in Windows TCP/IP allows an unauthorized attacker to elevate privileges over an adjacent network.
CVE-2026-42904CVSS 9.6Windows

CVE-2026-42904: windows 10 21h2 vulnerability

Heap-based buffer overflow in Windows TCP/IP allows an unauthorized attacker to elevate privileges over an adjacent network.

CVSS
9.6 CRITICAL
EPSS
35.17%
Known exploited
not in KEV
Product
windows 10 21h2

What is known

Heap-based buffer overflow in Windows TCP/IP allows an unauthorized attacker to elevate privileges over an adjacent network.

Sources