CVE-2026-44815
Published: 09 June 2026
Summary
CVE-2026-44815 is a critical-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Microsoft Windows 10 21H2. Its CVSS base score is 9.8 (Critical).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked in the top 38.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-35751
Vulnerability details
Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Stack buffer overflow in DHCP client directly enables remote code execution via malicious network response (T1203 Exploitation for Client Execution).
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.