cve detail
CVE-2026-21510
naam
Microsoft Windows Shell Protection Mechanism Failure Vulnerability
Microsoft Windows Shell contains a protection mechanism failure vulnerability that could allow an unauthorized attacker to bypass a security feature over a network.
KEV
bekend misbruikt
EPSS
4%
percentiel
89%
vendor
Microsoft
product
Windows
toegevoegd aan KEV
10 feb 2026
due date
03 mrt 2026
ransomware
Unknown
CWE
CWE-693
EPSS datum
12 mei 2026
aanbevolen actie
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
notities
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21510 ; https://nvd.nist.gov/vuln/detail/CVE-2026-21510