top of page
perceptive_background_267k.jpg

Microsoft Defender contains an insufficient granularity of access control vulnerability that could allow an authorized attacker to escalate privileges locally.

Published:

22 April 2026 at 00:00:00

Alert date:

22 April 2026 at 20:02:14

Source:

cisa.gov

Click to open the original link from this advisory

Security Tools, Operating Systems

Microsoft Defender contains an insufficient granularity of access control vulnerability identified as CVE-2026-33825. This security flaw could allow an authorized attacker to escalate privileges locally on affected systems. The vulnerability affects Microsoft's endpoint protection solution and has been assigned a high criticality rating. Official advisories and vulnerability details are available through CISA's National Vulnerability Database and Microsoft Security Response Center. Organizations using Microsoft Defender should prioritize patching and review their current security configurations.

Technical details

Mitigation steps:

Affected products:

Microsoft Defender

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-33825
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33825

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page