CRITICAL 9.8 NuGet
MsQuic has a Remote Elevation of Privilege Vulnerability
GHSA-gvvw-8j96-8g5r · CVE-2026-32179
Published · Modified
Description
Summary
Improper input validation in Microsoft QUIC allows an unauthorized attacker to elevate privileges over a network.
Details
Improper Input Validation Integer Underflow (Wrap or Wraparound) when decoding ACK frame.
Patches
- Fix underflow in ACK frame parsing - 1e6e999b
Impact
An attacker who successfully exploited this vulnerability could gain elevated privileges.
Ready to move
Start Securing
Free, no credit card | First findings in minutes