CVE-2026-42902— Microsoft PowerToys Elevation of Privilege Vulnerability
Possible ATT&CK Techniques 1AI
T1548.001 · Setuid and SetgidAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft | Microsoft PowerToys | 0.1< v0.99.1 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-42902
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Microsoft PowerToys Elevation of Privilege Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper authorization in Microsoft PowerToys allows an authorized attacker to elevate privileges locally.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
授权机制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft PowerToys 授权问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft PowerToys是美国微软(Microsoft)开源的一套Windows高级生产力工具集。 Microsoft PowerToys存在授权问题漏洞,该漏洞源于授权不当,可能导致授权攻击者本地提升权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Microsoft | Microsoft PowerToys | 0.1 ~ v0.99.1 | - |
II. Public POCs for CVE-2026-42902
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-42902
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-42902 (1)
Same Patch Batch · Microsoft · 2026-06-09 · 200 CVEs total
| CVE-2026-47643 | 9.8 CRITICAL | Azure Stack Edge Remote Code Execution Vulnerability |
| CVE-2026-26142 | 9.8 CRITICAL | Nuance PowerScribe Remote Code Execution Vulnerability |
| CVE-2026-47291 | 9.8 CRITICAL | HTTP.sys Remote Code Execution Vulnerability |
| CVE-2026-45657 | 9.8 CRITICAL | Windows Kernel Remote Code Execution Vulnerability |
| CVE-2026-44815 | 9.8 CRITICAL | DHCP Client Service Remote Code Execution Vulnerability |
| CVE-2026-47281 | 9.6 CRITICAL | Visual Studio Code Elevation of Privilege Vulnerability |
| CVE-2026-42904 | 9.6 CRITICAL | Windows TCP/IP Elevation of Privilege Vulnerability |
| CVE-2026-45602 | 9.1 CRITICAL | Windows Dynamic Host Configuration Protocol (DHCP) Tampering Vulnerability |
| CVE-2026-32193 | 8.8 HIGH | Azure Kubernetes Service (AKS) Remote Code Execution Vulnerability |
| CVE-2026-45484 | 8.8 HIGH | Microsoft SharePoint Elevation of Privilege Vulnerability |
| CVE-2026-40371 | 8.8 HIGH | Microsoft Dynamics 365 (on-premises) Elevation of Privilege Vulnerability |
| CVE-2026-47653 | 8.8 HIGH | Remote Desktop Client Remote Code Execution Vulnerability |
| CVE-2026-47289 | 8.8 HIGH | Remote Desktop Client Remote Code Execution Vulnerability |
| CVE-2026-45648 | 8.8 HIGH | Windows Active Directory Domain Services Remote Code Execution Vulnerability |
| CVE-2026-45504 | 8.8 HIGH | Microsoft Exchange Server Elevation of Privilege Vulnerability |
| CVE-2026-42985 | 8.8 HIGH | Remote Desktop Client Remote Code Execution Vulnerability |
| CVE-2026-45607 | 8.4 HIGH | Windows Hyper-V Remote Code Execution Vulnerability |
| CVE-2026-45472 | 8.4 HIGH | Microsoft Office Remote Code Execution Vulnerability |
| CVE-2026-45463 | 8.4 HIGH | Microsoft Office Remote Code Execution Vulnerability |
| CVE-2026-47635 | 8.4 HIGH | Microsoft Outlook and Word Remote Code Execution Vulnerability |
Showing top 20 of 200 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: Microsoft
- CVE-2026-47645
Microsoft 365 Copilot's Business Chat Elevation of Privilege - CVE-2026-48582
Microsoft Exchange Online Elevation of Privilege Vulnerabili - CVE-2026-50519
Microsoft Visual Studio Code CoPilot Chat Security Feature B - CVE-2026-48584
Microsoft Azure Synapse Elevation of Privilege Vulnerability - CVE-2026-42895
Microsoft Copilot Tampering Vulnerability
Same weakness: CWE-285
- CVE-2026-49278
Rocket.Chat: Livechat Visitor Profile Disclosure Leaks Beare - CVE-2026-56310
Cap-go - Authorization Bypass in Organization Members Endpoi - CVE-2026-56231
Capgo - Broken Object Level Authorization in Build Job Contr - CVE-2026-46552
NocoDB: Shared-base link access can invite arbitrary users a - CVE-2026-56311
Capgo - Unauthenticated Cross-Tenant Disclosure via get_curr
V. Comments for CVE-2026-42902
No comments yet