Is Windows Server 2012 affected by CVE-2026-27912?

CVE-2026-27912 is a high-severity Kerberos authorization bypass affecting Windows Server 2012 through 2025 that allows authenticated attackers on the same network to escalate privileges to high integrity levels without user interaction.

CVE-2026-27912

EUVD-2026-22453 HIGH

2026-04-14 microsoft

Authentication Bypass Microsoft Windows Server 2012 Windows Server 2012 Server Core Installation Windows Server 2012 R2 Windows Server 2012 R2 Server Core Installation Windows Server 2016 Windows Server 2016 Server Core Installation Windows Server 2019 Windows Server 2019 Server Core Installation Windows Server 2022 Windows Server 2022 23H2 Edition Server Core Installation Windows Server 2025 Windows Server 2025 Server Core Installation

8.0

CVSS 3.1

Temporal: 7.0

CVSS VectorNVD

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Apr 14, 2026 - 19:29 vuln.today

DescriptionNVD

Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over an adjacent network.

AnalysisAI

Windows Kerberos authorization bypass enables authenticated attackers on adjacent networks to escalate privileges to high integrity levels across Windows Server 2012 through 2025. The flaw affects both desktop experience and Server Core installations. …

RemediationAI

Within 24 hours: Inventory all Windows Server 2012 through 2025 instances (including Server Core) and identify which require patching; obtain vendor security update details from Microsoft. Within 7 days: Deploy vendor-released patches to non-production Windows Server systems and validate functionality; establish a phased production rollout schedule with change management approval. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-27912 vulnerability details – vuln.today

Back

CVE-2026-27912

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code