ZDI-26-416
HIGH 7.8
Published
Jul 15, 2026
Microsoft Hyper-V netvsc Out-Of-Bounds Read Local Privilege Escalation Vulnerability
Microsoft
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Hyper-V. An attacker must first obtain the ability to execute low-privileged code within a Windows virtual machine under Hyper-V in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8.