Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
4089 articles · 175993 vulns · 37/41 feeds (7d)
← Back to list
9.9
CVE-2026-57092EXPLOITEDPATCHED
Microsoft · Windows 10 Version 1607

Use after free in Windows VMSwitch allows an authorized attacker to elevate privileges over a network.

Description

Use after free in Windows VMSwitch allows an authorized attacker to elevate privileges over a network.

Affected Products

VendorProductVersions
MicrosoftWindows 10 Version 160710.0.14393.0

Also Affects

Downstream vendors/products affected by this vulnerability

VendorProductSourceConfidence
microsoftwindows 11 version 24h2mitre_affected90%
microsoftwindows server 2019 (server core installation)mitre_affected90%
microsoftwindows 11 version 25h2mitre_affected90%
microsoftwindows 10 version 21h2mitre_affected90%
microsoftwindows server 2016 (server core installation)mitre_affected90%

References

  • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-57092(vendor-advisory, patch)

Related News (4 articles)

Tier C
VulDB1h ago
CVE-2026-57092 | Microsoft Windows up to Server 2025 VMSwitch use after free
→ No new info (linked only)
Tier C
Qualys Blog3h ago
Microsoft and Adobe Patch Tuesday, July 2026 Security Update Review 
→ No new info (linked only)
Tier D
The Hacker News4h ago
Microsoft Patches Record 622 Flaws, Including Two Zero-Days Under Active Attack
→ No new info (linked only)
Tier A
Microsoft MSRC10h ago
CVE-2026-57092 Microsoft Windows VMSwitch Elevation of Privilege Vulnerability
→ No new info (linked only)
CVSS 3.19.9 CRITICAL
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C
CISA KEV❌ No
Actively exploited✅ Yes
Patch available
10.0.14393.933910.0.17763.902010.0.19044.754810.0.19045.754810.0.26100.887510.0.28000.25256.2.9200.262266.3.9600.2329110.0.20348.538610.0.26100.33158
CWECWE-416
PublishedJul 14, 2026
Last enriched5h agov2
Trending Score69
Source articles4
Independent4
Info Completeness9/14
Missing: title, epss, kev, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

HIGHCVE-2026-56155EXPKEV
Active Directory Federation Services Elevation of Privilege Vulnerability
Trending: 138
MEDIUMCVE-2026-56164EXPKEV
Microsoft SharePoint Server Elevation of Privilege Vulnerability
Trending: 134
HIGHCVE-2026-50656EXP
Microsoft Defender Elevation of Privilege Vulnerability
Trending: 100
HIGHCVE-2026-41091EXPKEV
Microsoft Defender Elevation of Privilege Vulnerability
Trending: 72
CRITICALCVE-2026-55040EXP
Weak authentication in Microsoft Office SharePoint allows an unauthorized attacker to bypass a security feature over a network.
Trending: 72

Pin to Dashboard

Verification

State: verified
Confidence: 0%

Vulnerability Timeline

CVE Published
Jul 14, 2026
Actively Exploited
Jul 14, 2026
Exploit Available
Jul 14, 2026
Patch Available
Jul 14, 2026
Discovered by ZDM
Jul 14, 2026
Updated: description, exploitAvailable, activelyExploited
Jul 14, 2026

Version History

v2
Last enriched 5h ago
v2Tier A7h ago

Added a detailed description of the vulnerability and marked it as actively exploited with an exploit available.

descriptionexploitAvailableactivelyExploited
via Microsoft MSRC
v17h ago

Initial creation