Microsoft Windows Server 2016
Moderate fix1 remedy
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*
Moderate fix1 remedy
Microsoft Windows Elevation of Privilege Vulnerability in Remote Procedure Call Interface
Vulnerability
An elevation of privilege vulnerability has been identified in the Windows Remote Procedure Call (RPC) Interface Definition Language (IDL). This vulnerability allows an attacker to create, modify, or delete files with the same privileges as the 'NT AUTHORITY\SYSTEM' account. The issue arises from a double free error, which can be exploited under certain conditions.
Impact
Successful exploitation of this vulnerability could allow an attacker to gain elevated privileges, enabling them to execute actions or access resources that are normally restricted.
Remediation
Users can apply the security update for this vulnerability, which is available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles linked in the product-specific sections.
Added: Jan 13, 2026, 8:07 PM
Updated: Jan 13, 2026, 8:07 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
2.5exploitability
3.3remediation
7.7relevance
2.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.