HIGHCVE-2026-26143Published Modified CNA microsoft
CVE-2026-26143: Microsoft PowerShell Security Feature Bypass Vulnerability
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
Metrics
- CVSS v3.1
- 7.8
- Severity
- HIGH
- Fixed in
- 7.4.14
- Affected Products
- 2
Affected packages
- Microsoft / PowerShell 7.4< 7.4.14 (from 7.4.0)
- Microsoft / PowerShell 7.5< 7.5.5 (from 7.5.0)
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C