Unrated severityNVD Advisory· Published Feb 10, 2026· Updated Apr 10, 2026
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
CVE-2026-21243
Description
Null pointer dereference in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
Affected products
6- Microsoft/Windows Server 2019v5Range: 10.0.17763.0
- Microsoft/Windows Server 2019 (Server Core installation)v5Range: 10.0.17763.0
- Microsoft/Windows Server 2022v5Range: 10.0.20348.0
- Microsoft/Windows Server 2022, 23H2 Edition (Server Core installation)v5Range: 10.0.25398.0
- Microsoft/Windows Server 2025v5Range: 10.0.26100.0
- Microsoft/Windows Server 2025 (Server Core installation)v5Range: 10.0.26100.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21243mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.