Home
MEDIUM: 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L/E:U/RL:O/RC:C 10.0.17763.0 (custom) before 10.0.17763.9020
affected
10.0.19044.0 (custom) before 10.0.19044.7548
affected
10.0.19045.0 (custom) before 10.0.19045.7548
affected
10.0.26100.0 (custom) before 10.0.26100.8875
affected
10.0.26200.0 (custom) before 10.0.26200.8875
affected
10.0.28000.0 (custom) before 10.0.28000.2269
affected
10.0.17763.0 (custom) before 10.0.17763.9020
affected
10.0.17763.0 (custom) before 10.0.17763.9020
affected
10.0.20348.0 (custom) before 10.0.20348.5386
affected
10.0.26100.0 (custom) before 10.0.26100.33158
affected
10.0.26100.0 (custom) before 10.0.26100.33158
affected
Description
Improper access control in Microsoft Windows DNS allows an authorized attacker to perform tampering locally.
Problem types
CWE-284: Improper Access Control
Product status
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50495 (DNS Client Tampering Vulnerability)