CVE-2026-40397

Published: Mag 12, 2026 Last Modified: Mag 13, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,8

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Integer underflow (wrap or wraparound) in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

191

Integer Underflow (Wrap or Wraparound)

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Availability Integrity Confidentiality Access Control

Potential Impacts:

Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory) Dos: Instability Modify Memory Execute Unauthorized Code Or Commands Bypass Protection Mechanism

Applicable Platforms

Languages: C, C#, C++, Java

View CWE Details

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2…

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40397

CVE-2026-40397

Description

Integer Underflow (Wrap or Wraparound)

Common Consequences

Applicable Platforms

Iscriviti alla newsletter