THREATOPS
THREAT OPSCVEs › CVE-2026-21525

CVE-2026-21525 — Microsoft Windows NULL Pointer Dereference Vulnerability

CISA KEVExploited: confirmedMicrosoft

Microsoft Windows Remote Access Connection Manager contains a NULL pointer dereference that could allow an unauthorized attacker to deny service locally.

Vulnerability details

Exploiting threat actors

Related reporting