Microsoft Windows Server 2012
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows Application Identity Subsystem Privilege Escalation Vulnerability
Vulnerability
A heap-based buffer overflow vulnerability has been identified in the Windows Application Identity (AppID) Subsystem. This vulnerability allows an authorized attacker to locally elevate privileges. The issue arises from a heap-based buffer overflow, which can be exploited to gain higher-level permissions on the affected system.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain SYSTEM privileges.
Remediation
Users can apply the security update for this vulnerability, which is included in the Windows Server 2012 R2 Monthly Rollup, the Windows Server 2016 Monthly Rollup, the Windows 10 Version 22H2 Monthly Rollup, and the Windows 11 Version 23H2 Security Update. Instructions for downloading these updates are available through the Microsoft Update Catalog.
Added: May 12, 2026, 8:05 PM
Updated: May 12, 2026, 8:05 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
2.7remediation
7.7relevance
8.1threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.