Microsoft Windows Server 2012
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows Rich Text Edit Privilege Escalation Vulnerability
Vulnerability
A double free vulnerability has been identified in Windows Rich Text Edit, allowing an authorized attacker to locally elevate privileges. This issue requires the attacker to send a specially crafted file to a victim and convince them to open it, creating a race condition that facilitates exploitation.
Impact
Exploitation of this vulnerability could lead to unauthorized administrative privileges.
Remediation
Users can apply the security update for this vulnerability, which is available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5087420, KB5087470, KB5087471, KB5087537, KB5087538, KB5087541, KB5087544, KB5089548, KB5089549, and KB5087539.
Added: May 12, 2026, 6:41 PM
Updated: May 12, 2026, 6:41 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
3.3remediation
7.7relevance
8.2threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.