Skip to main content

Windows Rich Text Edit CVE-2026-21530

| EUVDEUVD-2026-29547 MEDIUM
Double Free (CWE-415)
2026-05-12 microsoft GHSA-xp4f-mw6j-jxm8
6.7
CVSS 3.1 · NVD
Temporal: 5.8
Share

Severity by source

NVD PRIMARY
6.7 MEDIUM
AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
CIRCL (temporal)
5.8 MEDIUM
cvss

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
May 12, 2026 - 18:34 vuln.today
CVE Published
May 12, 2026 - 16:58 nvd
MEDIUM 6.7

DescriptionCVE.org

Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

AnalysisAI

Double free vulnerability in Windows Rich Text Edit component allows local authenticated attackers to escalate privileges on Windows 10 and Windows 11 systems through a specially crafted interaction. The flaw requires local access with standard user privileges and user interaction, but enables full system compromise including code execution and privilege elevation. Microsoft has released a vendor patch to address this issue.

Technical ContextAI

The vulnerability exists in the Windows Rich Text Edit (RichEdit) component, a legacy but widely-used text rendering library used by numerous Windows applications. CWE-415 identifies a double free memory corruption flaw, where the same memory region is freed twice during object cleanup or deallocation routines. This memory safety issue occurs in the RichEdit control's text processing logic, likely triggered when a specially crafted Rich Text Format (RTF) document or embedded object is parsed and processed. The double free can corrupt heap metadata and enable arbitrary code execution within the context of the application using RichEdit, and when combined with privilege escalation techniques, can compromise the entire system.

RemediationAI

Vendor-released patch available from Microsoft Security Response Center (MSRC) at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21530. Apply the latest Windows security updates through Windows Update or WSUS, which will patch the RichEdit component across all affected Windows 10 and Windows 11 versions. As an interim compensating control if patching cannot be immediately deployed, restrict end-user access to untrusted or externally-sourced Rich Text Format files, particularly through email or web downloads, since exploitation requires opening a malicious RTF document. Users should avoid opening RTF attachments from untrusted sources and disable RTF preview in email clients where supported. Disable RichEdit functionality in applications where it is not essential, though this may break legitimate document-handling workflows and is appropriate only in restricted environments.

Share

CVE-2026-21530 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy