Microsoft Windows Server 2012
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows UPnP Device Host Privilege Escalation Vulnerability
Vulnerability
A vulnerability allowing untrusted pointer dereference has been identified in the Windows Universal Plug and Play (UPnP) Device Host. This flaw enables an authorized attacker to locally elevate privileges. The vulnerability affects multiple Windows versions, including various Windows 10 releases, Windows 11, and several Windows Server editions.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain administrator rights.
Remediation
Users can apply the security update for this vulnerability through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles linked within the security update guide.
Added: Apr 14, 2026, 9:25 PM
Updated: Apr 14, 2026, 9:25 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
3.3remediation
7.7relevance
5.9threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.