Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.
Microsoft
CVE-2026-21250 CVSS 7.8
2026-02-10 08:00 UTC · 2026-02-10 05:00 -03
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.
Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security feature locally.
Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
https://security-tracker.debian.org/tracker/DSA-6129-1