CVE-2026-57097
Received Received - Intake

BaseFortify

Vulnerability report for CVE-2026-57097, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-14

Last updated on: 2026-07-14

Assigner: Microsoft Corporation

Description

Untrusted search path in Microsoft XML allows an unauthorized attacker to bypass a security feature with a physical attack.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-14
Last Modified
2026-07-14
Generated
2026-07-14
AI Q&A
2026-07-14
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
microsoft xml *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-426 The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Detection Guidance

The provided context does not include specific detection methods or commands for identifying the untrusted search path vulnerability in Microsoft XML (CVE-2026-57097). Detection may require checking for unauthorized modifications to XML-related system paths or verifying the integrity of Microsoft XML installations.

Since this vulnerability involves a physical attack vector, monitoring physical access to systems and reviewing logs for unusual activity related to XML configuration changes may be necessary. However, no direct commands or tools are mentioned in the available resources.

Executive Summary

CVE-2026-57097 is a security vulnerability in Microsoft XML. It involves an untrusted search path, which means the software may incorrectly load or execute files from locations that are not secure or trusted.

An unauthorized attacker can exploit this flaw to bypass a security feature, but this requires physical access to the targeted system. The attack does not rely on network-based exploitation but instead depends on the attacker having direct, physical interaction with the device.

Impact Analysis

If exploited, this vulnerability could allow an attacker to bypass security features in Microsoft XML. This may lead to unauthorized actions on the affected system, such as executing malicious code or accessing sensitive data.

The impact includes potential compromise of confidentiality, integrity, and availability of the system, as indicated by the CVSS scores (C:H/I:H/A:H). However, exploitation requires physical access, which limits the scenarios where this vulnerability can be abused.

Compliance Impact

This vulnerability could affect compliance with standards and regulations that require protection of sensitive data and system integrity.

  • GDPR: If the affected system processes personal data of EU citizens, a successful exploit could lead to unauthorized access or modification of that data, violating GDPR requirements for data protection and security.
  • HIPAA: For systems handling protected health information (PHI), this vulnerability could result in unauthorized access or tampering with PHI, which would violate HIPAA's security and privacy rules.

Organizations must ensure that physical security controls are in place to mitigate the risk of exploitation, as the attack requires physical access. Failure to address this vulnerability could result in non-compliance with these regulations.

Mitigation Strategies

The provided context does not specify immediate mitigation steps for CVE-2026-57097. However, based on the nature of the vulnerability (untrusted search path with physical attack requirements), the following general actions may help:

  • Restrict physical access to systems running Microsoft XML to prevent unauthorized tampering.
  • Apply any available security updates or patches provided by Microsoft for this vulnerability. Refer to the official Microsoft update guide for details.
  • Monitor systems for unusual behavior related to XML processing or unexpected changes to search paths.
  • Review and enforce least-privilege access controls to limit the impact of potential exploitation.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-57097. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart