KEV · Activement exploitée

CVE-2026-41091

HIGH 7.8 KEV Publié le 2026-05-12

EN Microsoft Defender Elevation of Privilege Vulnerability

EPSS 8.01% au-dessus de la médiane percentile 92.3%

CISA Known Exploited Vulnerability

Ajouté au KEV: 2026-05-20
Deadline remédiation: 2026-06-03
Action requise: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Ransomware: Non