Microsoft Defender
by Microsoft
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41091 | Hig | 0.63 | 7.8 | — | KEV | May 20, 2026 | Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally. | |
| CVE-2026-45584 | Hig | 0.53 | 8.1 | — | May 20, 2026 | Heap-based buffer overflow in Microsoft Defender allows an unauthorized attacker to execute code over a network. | ||
| CVE-2026-45498 | Med | 0.38 | 4.0 | — | KEV | May 20, 2026 | Microsoft Defender Denial of Service Vulnerability |
- risk 0.63cvss 7.8epss —
Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally.
- risk 0.53cvss 8.1epss —
Heap-based buffer overflow in Microsoft Defender allows an unauthorized attacker to execute code over a network.
- risk 0.38cvss 4.0epss —
Microsoft Defender Denial of Service Vulnerability