Primary

Context

Microsoft Windows Hyper-V Heap-Based Buffer Overflow Vulnerability Allowing Local Code Execution

Vulnerability

A heap-based buffer overflow vulnerability has been identified in Windows Hyper-V. This vulnerability allows an authorized attacker to execute code locally. It affects multiple Windows products, including various versions of Windows Server, Windows 10, and Windows 11. The vulnerability arises from a buffer overflow in the Hyper-V component, which can be exploited by an attacker with access to the local machine.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution on the affected system.

Remediation

Users can apply the security update KB5075999 to address this vulnerability. This update is available through the Microsoft Update Catalog. For Windows Server 2025, the Security Hotpatch Update KB5075942 can also be applied. Windows 11 users can download the Security Hotpatch Update KB5077212.

Added: Feb 10, 2026, 7:55 PM

Updated: Feb 11, 2026, 2:10 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.6

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.6

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows Hyper-V Heap-Based Buffer Overflow Vulnerability Allowing Local Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating