THREATOPS
THREAT OPSCVEs › CVE-2026-33825

CVE-2026-33825 — Microsoft Defender Insufficient Granularity of Access Control Vulnerability

CISA KEVExploited: confirmedMicrosoft

Microsoft Defender contains an insufficient granularity of access control vulnerability that could allow an authorized attacker to escalate privileges locally.

Vulnerability details

Exploiting threat actors

Related reporting