CVE-2026-47291: windows 10 1607 vulnerability

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network.
CVE-2026-47291CVSS 9.8Windows

CVE-2026-47291: windows 10 1607 vulnerability

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network.

CVSS
9.8 CRITICAL
EPSS
97.31%
Known exploited
not in KEV
Product
windows 10 1607

What is known

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network.

Sources