Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Windows Shell security feature bypass (CVE-2026-21510)

Vulnerability
First reported
Last updated
Happening score
H score 28
2 unique sources, 2 articles

Summary

Hide ▲

Microsoft patched CVE-2026-21510, an actively exploited Windows Shell security feature bypass that could let attackers evade SmartScreen and Shell warnings. The flaw can be triggered by opening a specially crafted link or shortcut file, turning a simple click into a prompt-bypass path on affected Windows systems. Microsoft shipped the fix in February 2026 Patch Tuesday, making it a priority update for Windows users and administrators.

Related Happenings

Microsoft Edge stops loading saved passwords into cleartext memory at startup

Security Tool/Service
First: 15.05.2026 17:49 Last: 15.05.2026 17:49 Sources 1

About this happening: **Microsoft Edge** is changing its built-in password manager so **saved passwords** are no longer loaded into **process memory in clear text** at startup, reducing the risk of loc...

Open Happening

Windows 11 BitLocker bypass YellowKey security flaw

Vulnerability
First: 14.05.2026 10:27 Last: 14.05.2026 10:27 Sources 1

About this happening: **YellowKey** is a **Windows BitLocker security feature bypass** tracked as **CVE-2026-45585** that can expose **BitLocker-protected drives** through the **Windows Recovery Enviro...

Latest development: 20.05.2026 10:31

Microsoft assigned CVE-2026-45585 to YellowKey, a Windows BitLocker security feature bypass, and recommended removing autofstx.exe from the Session Manager BootExecute REG_MULTI_SZ value, reestablishing BitLocker trust for WinRE, and moving already encrypted devices from TPM-only to TPM+PIN to require a pre-boot PIN.

Open Happening

Microsoft Windows Autopatch fix for EU restricted driver update deployment bug

Security Tool/Service
First: 13.05.2026 17:36 Last: 13.05.2026 17:36 Sources 1

About this happening: **Microsoft** fixed a **Windows Autopatch** service bug that let **restricted driver updates** reach some managed devices in the **EU**, bypassing admin approval controls and crea...

Open Happening

Microsoft MDASH enters limited private preview for AI-driven vulnerability discovery at scale

Security Tool/Service
First: 13.05.2026 16:46 Last: 13.05.2026 16:46 Sources 1

About this happening: Microsoft's **MDASH** has entered **limited private preview**, adding a new **AI-driven vulnerability discovery** service that can validate and prove exploitable defects at scale....

Open Happening

Microsoft Defender false-positively flags DigiCert root certificates and removes some from Windows trust store

Security Tool/Service
First: 03.05.2026 21:11 Last: 03.05.2026 21:11 Sources 1

About this happening: **Microsoft Defender** began falsely flagging valid **DigiCert root certificates** as **Trojan:Win32/Cerdigent.A!dha**, creating widespread false positives and risking certificate...

Open Happening

Timeline

  1. 10.02.2026 20:51 3 articles · 3mo ago

    Microsoft patches CVE-2026-21510 in Windows Shell

    Mitigation Patch Update

    Microsoft's February 2026 Patch Tuesday on 2026-02-10 fixed CVE-2026-21510, an actively exploited Windows Shell security feature bypass that can be triggered by opening a specially crafted link or shortcut file. Microsoft said improper handling in Windows Shell components can allow attacker-controlled content to execute without user warning or consent, and attributed discovery to MSTIC, MSRC, the Office Product Group Security Team, Google Threat Intelligence Group, and an anonymous researcher.

    Show sources
    Open in new tab