CVE-2026-58631

Published Jul 14, 2026

Last updated 3 hours ago

Overview

AI description

Automated description summarized from trusted sources.

CVE-2026-58631 is identified as a Remote Code Execution (RCE) vulnerability affecting Windows Admin Center (WAC). This flaw was disclosed as part of Microsoft's July 2026 Patch Tuesday updates. The vulnerability allows an attacker to execute arbitrary code remotely within the context of the Windows Admin Center.

Description
Improper authorization in Windows Admin Center allows an authorized attacker to execute code locally.
Source
secure@microsoft.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.8
Impact score
5.9
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

secure@microsoft.com
CWE-285

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

6

References

Sources include official advisories and independent security research.