CVE-2026-7162
WinFsp · WinFsp
A vulnerability in WinFsp involving an integer overflow may allow a local attacker to achieve system-level access.
Executive summary
A high-severity integer overflow vulnerability in WinFsp 2.2.26112 and lower could allow a local attacker to escalate privileges to the system level.
Vulnerability
This is an integer overflow vulnerability (CWE-190) that occurs within the software, allowing a local attacker with low privileges to potentially trigger system-level code execution.
Business impact
Successful exploitation allows an attacker to gain elevated system-level privileges on the host machine. Given the CVSS score of 7.8, this poses a significant risk to the integrity and confidentiality of the host system, potentially leading to a full compromise of the affected machine.
Remediation
Immediate Action: Update to the latest available version of WinFsp immediately as indicated in the vendor release.
Proactive Monitoring: Monitor system logs for unusual process execution or attempts to access restricted system files.
Compensating Controls: Ensure that local access to the machine is restricted to authorized users only, as the vulnerability requires local access to exploit.
Exploitation status
Public Exploit Available: Unknown.
Analyst recommendation
Due to the severity of the potential impact, organizations should prioritize patching WinFsp installations. Administrators must verify their current version against the affected range and apply the vendor-supplied update immediately to mitigate the risk of local privilege escalation.