Medium severity6.5NVD Advisory· Published Jun 19, 2026· Updated Jun 19, 2026

CoreWCF NetNamedPipe transport accepts attach to a pre-existing named pipe instance

CVE-2026-54777

Description

Impact

CoreWCF NetNamedPipe transport accepts attach to a pre-existing named pipe instance, allowing local interception of NetNamedPipe traffic. NetNamedPipe creates a shared memory object based on the listening url, then generated a unique GUID for the named pipe it will be using and saves this to the shared memory object. Then it creates the named pipe to listen for clients. This requires an attacker to race the service and create the named pipe between the service publishing the GUID to the shared memory location (which the attacker needs to read) and the service creating the named pipe itself.

Patches

Fixed in CoreWCF v1.8.1 and v1.9.1

Workarounds

None

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

CoreWCF/Corewcfllm-fuzzy
Range: <=1.8.0, 1.9.0

Patches

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

News mentions

No linked articles in our index yet.

cvss	0.260
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000