CVE-2026-33826NVD

Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.

Severity Level

HIGH(8.0)

Published Date

Apr 14, 2026

Last Modified

Apr 17, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.93%Probability

Root Weakness (CWE)

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required.

CVSS v3.1 Base Metrics

Attack VectorAdjacent

Attack ComplexityLow

Privileges RequiredLow

User InteractionNone

ScopeUnchanged

ConfidentialityHigh

IntegrityHigh

AvailabilityHigh