CVE-2026-57968

Summary

Buffer over-read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows Subsystem for Linux (WSL2)5.0.0.0 < 2.7.8affected

Weaknesses

  • CWE-126: CWE-126: Buffer Over-read

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References