CVE-2026-24293
Received Received - Intake
Null Pointer Dereference in Windows WinSock Enables Local Privilege Escalation

Publication date: 2026-03-10

Last updated on: 2026-03-13

Assigner: Microsoft Corporation

Description
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-10
Last Modified
2026-03-13
Generated
2026-05-27
AI Q&A
2026-03-10
EPSS Evaluated
2026-05-25
NVD
CVE-2026-24293
EUVD
EUVD-2026-10618
Affected Vendors & Products
Showing 17 associated CPEs
Vendor Product Version / Range
microsoft windows_10_21h2 to 10.0.19044.7058 (exc)
microsoft windows_10_21h2 to 10.0.19044.7058 (exc)
microsoft windows_10_21h2 to 10.0.19044.7058 (exc)
microsoft windows_10_22h2 to 10.0.19045.7058 (exc)
microsoft windows_10_22h2 to 10.0.19045.7058 (exc)
microsoft windows_10_22h2 to 10.0.19045.7058 (exc)
microsoft windows_11_23h2 to 10.0.22631.6783 (exc)
microsoft windows_11_23h2 to 10.0.22631.6783 (exc)
microsoft windows_11_24h2 to 10.0.26100.7979 (exc)
microsoft windows_11_24h2 to 10.0.26100.7979 (exc)
microsoft windows_11_25h2 to 10.0.26200.7979 (exc)
microsoft windows_11_25h2 to 10.0.26200.7979 (exc)
microsoft windows_11_26h1 to 10.0.28000.1719 (exc)
microsoft windows_11_26h1 to 10.0.28000.1719 (exc)
microsoft windows_server_2022 to 10.0.20348.4830 (exc)
microsoft windows_server_2022_23h2 to 10.0.25398.2207 (exc)
microsoft windows_server_2025 to 10.0.26100.32463 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability be detected on my network or system? Can you suggest some commands?

I don't know


What immediate steps should I take to mitigate this vulnerability?

I don't know


Can you explain this vulnerability to me?

This vulnerability is a null pointer dereference in the Windows Ancillary Function Driver for WinSock. It allows an authorized attacker to cause a fault in the system by referencing a null pointer, which can lead to unexpected behavior.

Specifically, this flaw enables the attacker to elevate their privileges locally on the affected system.


How can this vulnerability impact me? :

This vulnerability can impact you by allowing an authorized attacker to elevate their privileges on your system.

With elevated privileges, the attacker could gain higher-level access than intended, potentially leading to full control over the affected system.

The CVSS score of 7.8 indicates a high severity, with impacts on confidentiality, integrity, and availability.


How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:

I don't know


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart