Skip to main content

Severity by source

Vendor (microsoft) PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CIRCL (temporal)
6.5 MEDIUM
cvss
vuln.today AI
7.5 HIGH

Unauthenticated remote packet to the IKE listener (AV:N/AC:L/PR:N/UI:N) causes a crash with availability-only impact (A:H) and no C/I loss.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (microsoft).

CVSS VectorVendor: microsoft

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

2
Analysis Generated
Jul 14, 2026 - 18:14 vuln.today
CVE Published
Jul 14, 2026 - 17:04 nvd
HIGH 7.5

DescriptionCVE.org

Heap-based buffer overflow in Windows Internet Key Exchange (IKE) Protocol allows an unauthorized attacker to deny service over a network.

AnalysisAI

Network denial of service in the Windows Internet Key Exchange (IKE) protocol implementation allows an unauthenticated remote attacker to crash affected systems by triggering a heap-based buffer overflow. All impact is to availability only (CVSS 7.5, A:H, no confidentiality or integrity loss), making this a reliability/uptime threat against IPsec/VPN-facing Windows 10, Windows 11, and Windows Server hosts rather than a code-execution vulnerability. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach exposed IKE listener (UDP 500/4500)
Delivery
Send crafted IKE negotiation packet
Exploit
Trigger heap buffer overflow in IKE parser
Execution
Corrupt heap and crash IKE service
Impact
Denial of service / VPN outage

Vulnerability AssessmentAI

Exploitation Exploitation requires the target to have the Windows IKE/IPsec service (IKEEXT) running and its IKE listener reachable by the attacker over the network - typically UDP port 500 and/or UDP 4500 (NAT-T) exposed to untrusted networks, as on VPN/IPsec gateways. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) describes an easily reachable, unauthenticated, no-interaction network attack whose sole impact is availability - consistent with the description's 'deny service over a network.' The 7.5 score is driven entirely by A:H; there is no confidentiality or integrity exposure, so this is not an RCE despite being a heap overflow (memory corruption in this case manifests as a crash rather than confirmed code execution). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who can reach a Windows host's IKE listener (UDP 500/4500) - for example an internet-facing VPN gateway - sends a specially crafted IKE negotiation packet that overflows a heap buffer during key-exchange parsing, crashing the IKE service or the system and dropping all IPsec/VPN connectivity. No authentication or user interaction is required (PR:N/UI:N) and complexity is low (AC:L), so the attack can be repeated to sustain an outage; no public exploit is identified at time of analysis.
Remediation Apply the Microsoft security update for CVE-2026-50696; Patch available per vendor advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50696, where the exact fixed build per Windows SKU is listed (no single cross-SKU version string is provided in the input, so consult the advisory for your specific edition). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours, identify all Windows 10, 11, and Server systems with internet-accessible or externally-facing IPsec endpoints, prioritizing VPN concentrators and remote access infrastructure. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-56155 HIGH POC
7.8 Jul 14

Local privilege escalation in Microsoft Active Directory Federation Services (AD FS) lets an already-authenticated low-p

CVE-2026-49798 CRITICAL POC
9.3 Jul 14

Local privilege escalation in the Microsoft Windows Kernel allows an unauthorized attacker to gain elevated (SYSTEM-leve

CVE-2026-50489 HIGH POC
8.8 Jul 14

Local privilege escalation in the Windows Win32K kernel subsystem (CWE-122 heap-based buffer overflow) lets an already-a

CVE-2026-49795 HIGH POC
8.8 Jul 14

Local privilege escalation in the Windows Kernel lets an already-authenticated attacker corrupt kernel memory via a use-

CVE-2026-54128 HIGH POC
8.4 Jul 14

Local code execution in the Windows DHCP Client service stems from a use-after-free (CWE-416) memory-corruption flaw aff

CVE-2026-54992 HIGH POC
8.4 Jul 14

Local code execution in the Microsoft Message Queuing (MSMQ) Queue Manager affects a broad range of Windows client and s

CVE-2026-50518 CRITICAL
9.8 Jul 14

Remote code execution in the Microsoft Windows DHCP Server role allows an unauthenticated network attacker to run arbitr

CVE-2026-50667 HIGH POC
7.8 Jul 14

Elevation of privilege in the Windows NTFS file-system driver lets an already-authenticated local user escalate to SYSTE

CVE-2026-50655 HIGH POC
7.8 Jul 14

Local code execution in the Windows Media component of supported Windows 10, Windows 11, and Windows Server (2016 throug

CVE-2026-57092 CRITICAL
9.9 Jul 14

Elevation of privilege in the Windows Hyper-V virtual network switch (VMSwitch) lets an authenticated attacker operating

CVE-2026-56188 CRITICAL
9.8 Jul 14

Remote code execution in the Windows Server Network driver stems from a race condition (CWE-362) that lets an unauthoriz

CVE-2026-56190 CRITICAL
9.8 Jul 14

Remote code execution in Microsoft Windows Remote Desktop (RDP) allows an unauthorized network attacker to run arbitrary

Share

CVE-2026-50696 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy