THREAT OPS › CVEs › CVE-2026-21533
CVE-2026-21533 — Microsoft Windows Improper Privilege Management Vulnerability
Microsoft Windows Remote Desktop Services contains an improper privilege management vulnerability that could allow an authorized attacker to elevate privileges locally.
Vulnerability details
- Affected productsWindows
- KEV remediation due2026-03-03
Exploiting threat actors
- Earth LuscaG1006