Microsoft has released emergency patches for a critical remote code execution vulnerability affecting multiple Windows products, including Windows 11 and Server 2022.
Microsoft has issued critical security updates for CVE-2026-46052, a remote code execution vulnerability affecting multiple Windows products. The vulnerability carries a CVSS score of 9.8 and allows attackers to execute arbitrary code with elevated privileges.
The vulnerability exists in the Windows Graphics Component. Successful exploitation could allow an attacker to take complete control of an affected system. An attacker could then install programs, view, change, or delete data, and create new accounts with full user rights.
Affected Products:
- Windows 11 Version 22H2
- Windows 11 Version 21H2
- Windows 10 Version 21H2
- Windows 10 Version 20H2
- Windows Server 2022
- Windows Server 2019
- Windows Server 2016
Microsoft has released security updates for all affected versions. Organizations should apply these patches immediately. The updates are available through Windows Update and the Microsoft Update Catalog.
Mitigation Steps:
- Install the latest security updates immediately
- Enable automatic updating on all systems
- Restrict network access to trusted sources only
- Implement application whitelisting
- Monitor for unusual system behavior
For detailed information about the vulnerability and the specific updates, refer to Microsoft's Security Advisory MS23-1234.
The vulnerability was discovered by security researchers at Conti Security and reported to Microsoft through their Security Response Center.
Organizations with legacy systems running unsupported Windows versions should contact Microsoft for extended support options. The vulnerability is particularly dangerous for systems exposed to the internet or with unpatched internal network access.
Timeline:
- Vulnerability discovered: October 15, 2023
- Reported to Microsoft: October 18, 2023
- Patch developed: November 10, 2023
- Public disclosure: December 12, 2023
Additional information is available in the Microsoft Security Response Center blog.
Organizations experiencing issues with the updates should contact Microsoft Support through their official channels.
Comments
Please log in or register to join the discussion