Critical severityNVD Advisory· Published Apr 16, 2026

MsQuic has a Remote Elevation of Privilege Vulnerability

CVE-2026-32179

Description

Summary

Improper input validation in Microsoft QUIC allows an unauthorized attacker to elevate privileges over a network.

Details

Improper Input Validation Integer Underflow (Wrap or Wraparound) when decoding ACK frame.

#### Patches - Fix underflow in ACK frame parsing - 1e6e999b

Impact

An attacker who successfully exploited this vulnerability could gain elevated privileges.

MSRC

CVE Info https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32179

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
Microsoft.Native.Quic.MsQuic.OpenSSLNuGet	>= 2.5.0-ci.532574, < 2.5.7	2.5.7
Microsoft.Native.Quic.MsQuic.SchannelNuGet	>= 2.5.0-ci.532574, < 2.5.7	2.5.7
Microsoft.Native.Quic.MsQuic.SchannelNuGet	< 2.4.18	2.4.18
Microsoft.Native.Quic.MsQuic.OpenSSLNuGet	< 2.4.18	2.4.18

Patches

1e6e999b1994

Fix underflow in ACK frame parsing (#5942)

https://github.com/microsoft/msquicGuillaume HetierApr 14, 2026via ghsa

commit

1 file changed · +5 −0

src/core/frame.c+5 −0 modified

@@ -334,6 +334,11 @@ QuicAckFrameDecode(
 
         Largest -= (Block.Gap + 1);
         Count = Block.AckBlock + 1;
+    
+        if (Count > Largest + 1) {
+            *InvalidFrame = TRUE;
+            return FALSE;
+        }
 
         //
         // N.B. The efficiency here isn't great because we are always inserting

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

News mentions

No linked articles in our index yet.

cvss	0.585
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000