Threat Intelligence / CVE / CVE-2026-40369

CVE-2026-40369

CVSS 7.8 (HIGH) · EPSS 0.0% · Published 2026-05-12

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVSS v3 vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Weaknesses (CWE)

CWE-822

Threats tracking this CVE

Windows Kernel CVE-2026-40369 — NtQuerySystemInformation ProbeForWrite Bypass Enables Arbitrary Kernel Memory Increment → SYSTEM LPE from Browser Sandboxes (Ori Nimron) — CRITICAL

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40369

Full detection coverage & IOCs for threats exploiting CVE-2026-40369 are available via the Threadlinqs MCP server (Purple tier). View plans →

Markdown version · Threadlinqs Intelligence