Microsoft PowerShell Elevation of Privilege Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Microsoft PowerShell Elevation of Privilege Vulnerability

CVE-2026-26170

Summary

An attacker with local access to a Windows system can exploit a weakness in PowerShell to gain higher-level user permissions. This could allow the attacker to make unauthorized changes or access sensitive data. To protect against this, ensure that PowerShell is kept up to date, and consider restricting its use to trusted users.

Original title

Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.

Original description

Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-20 Improper Input Validation

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26170

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026