Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Windows Netlogon stack-based buffer overflow security flaw (CVE-2026-41089)

Vulnerability
First reported
Last updated
Happening score
H score 23
1 unique sources, 1 articles

Summary

Hide ▲

Microsoft’s May Patch Tuesday fixed CVE-2026-41089, a critical stack-based buffer overflow in Windows Netlogon that could let attackers gain system privileges on a domain controller. The flaw has a CVSS v3 score of 9.8, requires no privileges or user interaction, and is rated low complexity. Security teams responsible for domain controllers should prioritize remediation.

Related Happenings

Microsoft Windows Server 2016 domain controller discovery failure after KB5087537

Service Disruption
First: 26.05.2026 10:41 Last: 26.05.2026 10:41 Sources 1

About this happening: Microsoft confirmed a **known issue** in **Windows Server 2016** after **KB5087537** that can prevent **domain controller discovery**, disrupting administrative operations and app...

Open Happening

Azure Backup for AKS privilege escalation flaw

Vulnerability
First: 16.05.2026 23:55 Last: 16.05.2026 23:55 Sources 1

About this happening: A **critical Azure Backup for AKS** privilege-escalation flaw was independently validated, exposing Kubernetes clusters to **cluster-admin** takeover from the low-privileged **Bac...

Open Happening

Windows DNS heap-based buffer overflow remote code execution flaw (CVE-2026-41096)

Vulnerability
First: 13.05.2026 13:36 Last: 13.05.2026 13:36 Sources 1

About this happening: Microsoft patched **CVE-2026-41096**, a **heap-based buffer overflow** in **Windows DNS** that could let an unauthorized attacker execute code remotely on vulnerable Windows syste...

Open Happening

Windows RPC PhantomRPC local privilege escalation flaw

Vulnerability
First: 28.04.2026 14:31 Last: 28.04.2026 14:31 Sources 1

About this happening: **PhantomRPC** in **Windows RPC** can let a local attacker elevate to **System** across **all Windows versions**, creating a high-impact privilege-escalation path. The flaw abuses...

Open Happening

CISA orders FCEB remediation for CVE-2025-60710

Public Sector Action
First: 15.04.2026 17:51 Last: 15.04.2026 17:51 Sources 1

About this happening: CISA added **CVE-2025-60710** to its **actively exploited** catalog and gave **FCEB agencies** **two weeks** to secure systems under **BOD 22-01**. The move targets a **Windows Ta...

Open Happening

Timeline

  1. 13.05.2026 11:15 2 articles · 14d ago

    Microsoft fixes CVE-2026-41089 in Windows Netlogon

    Initial Disclosure

    Microsoft published May Patch Tuesday security updates that fixed 120 CVEs, including CVE-2026-41089 in Windows Netlogon, a critical stack-based buffer overflow with a CVSS v3 base score of 9.8 that could give attackers system privileges on a domain controller. Rapid7 principal software engineer Adam Barnett urged anyone responsible for securing a domain controller to prioritize remediation, noting that no privileges or user interaction are required and attack complexity is low.

    Show sources
    Open in new tab