CVE-2026-41089: Microsoft Windows Server 2012

What is CVE-2026-41089?

Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network.

CVSS9.8 NVD 3.1

SeverityCRITICAL

ExploitationNo exploitation reported

EPSS<1% · P26

Triage statusNo Known Exploit

ActionPatch within 48 hours

CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWECWE-121

NVD published2026-05-12

NVD last modified2026-05-15

Affected product

Microsoft Windows Server 2012

NVD also lists CPE entries for: Microsoft Windows Server 2012, Microsoft Windows Server 2016, Microsoft Windows Server 2019, Microsoft Windows Server 2022, Microsoft Windows Server 2022 23h2

Remediation Steps

Apply the vendor security update for Microsoft Windows Server 2012 as a priority.
Restrict network exposure of the affected service to trusted sources until patched.
Review logs and detections for indicators of exploitation.
Confirm fixed versions against the official vendor advisory before deploying.

References

Coverage on defend.network

Vulnerability Priority Report – Week 1 of June 2026 (June 1 – 7)
Red Hat npm, WordPress, Instagram under active attack; critical Windows vulnerability patching urgent (2026-06-02)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

What is CVE-2026-41089?

Affected product

Remediation Steps

References

Coverage on defend.network

Get Critical CVE Alerts