Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.1
Windows Workstation: Malicious User Can Crash System with Special Input
CVE-2026-22722
Summary
A malicious user with a legitimate login on a Windows Workstation can potentially crash the system by sending a special type of input. This is a serious issue because it could disrupt business operations. To fix it, apply the patches provided by Microsoft.
Original title
A malicious actor with authenticated user privileges on a Windows based Workstation host may be able to cause a null pointer dereference error. To Remediate CVE-2026-22722, apply the patches listed...
Original description
A malicious actor with authenticated user privileges on a Windows based Workstation host may be able to cause a null pointer dereference error. To Remediate CVE-2026-22722, apply the patches listed in the "Fixed version" column of the 'Response Matrix'
nvd CVSS3.1
6.1
Vulnerability type
CWE-476
NULL Pointer Dereference
Published: 26 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026