Home
HIGH: 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C 10.0.19044.0 (custom) before 10.0.19044.7548
affected
10.0.19045.0 (custom) before 10.0.19045.7548
affected
10.0.26100.0 (custom) before 10.0.26100.8875
affected
10.0.26200.0 (custom) before 10.0.26200.8875
affected
10.0.28000.0 (custom) before 10.0.28000.2269
affected
Description
Improper link resolution before file access ('link following') in Windows Server Backup allows an authorized attacker to elevate privileges locally.
Problem types
CWE-59: Improper Link Resolution Before File Access ('Link Following')
Product status
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50364 (Windows Backup Service Elevation of Privilege Vulnerability)