Description
Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code over an adjacent network.
Published: 2026-06-09
Score: 7.1 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an integer overflow or wraparound in Windows Kerberos Key Distribution Center (KDC) that permits an authorized attacker to execute arbitrary code on a server connected over the same network. This flaw can be used to gain remote code execution, which jeopardizes system confidentiality, integrity, and availability. The weakness corresponds to CWE‑190.

Affected Systems

The affected products are Microsoft Windows Server 2012, 2012 R2, 2016, 2019, 2022, and 2025, including Server Core installations. These versions run the KDC service for domain authentication.

Risk and Exploitability

The CVSS base score of 7.1 indicates a medium severity vulnerability. No EPSS score is available and the issue is not listed in CISA KEV, so there is no evidence of widespread exploitation. The likely attack path requires the attacker to be an authorized user who can request Kerberos tickets, and then exploit the integer overflow during ticket processing. Because the flaw is limited to an authenticated context, an attacker must first compromise or have legitimate credentials on the network to exploit it.

Generated by OpenCVE AI on June 9, 2026 at 19:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the official Microsoft security update for CVE‑2026‑47288 using the guidance on the Microsoft Security Update Guide (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47288).
  • Restart the Windows Server to activate the patch across the KDC service and ensure the update is installed on all domain controllers.
  • Limit Kerberos authentication traffic by segmenting the network so that only trusted hosts can request tickets, and monitor for abnormal ticket‑request patterns to detect potential exploitation attempts.

Generated by OpenCVE AI on June 9, 2026 at 19:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 22:45:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft windows Server 2012 (server Core Installation)
Microsoft windows Server 2012 R2
Microsoft windows Server 2012 R2 (server Core Installation)
Microsoft windows Server 2016 (server Core Installation)
Microsoft windows Server 2019 (server Core Installation)
Microsoft windows Server 2025 (server Core Installation)
Vendors & Products Microsoft windows Server 2012 (server Core Installation)
Microsoft windows Server 2012 R2
Microsoft windows Server 2012 R2 (server Core Installation)
Microsoft windows Server 2016 (server Core Installation)
Microsoft windows Server 2019 (server Core Installation)
Microsoft windows Server 2025 (server Core Installation)

Tue, 09 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code over an adjacent network.
Title Windows Kerberos Key Distribution Center (KDC) Remote Code Execution
First Time appeared Microsoft
Microsoft windows Server 2012
Microsoft windows Server 2012 R2
Microsoft windows Server 2016
Microsoft windows Server 2019
Microsoft windows Server 2022
Microsoft windows Server 2025
Weaknesses CWE-190
CPEs cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2012_R2:*:*:*:*:*:*:x64:*
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft windows Server 2012
Microsoft windows Server 2012 R2
Microsoft windows Server 2016
Microsoft windows Server 2019
Microsoft windows Server 2022
Microsoft windows Server 2025
References
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C'}

Subscriptions

Microsoft Windows Server 2012 Windows Server 2012 (server Core Installation) Windows Server 2012 R2 Windows Server 2012 R2 Windows Server 2012 R2 (server Core Installation) Windows Server 2016 Windows Server 2016 (server Core Installation) Windows Server 2019 Windows Server 2019 (server Core Installation) Windows Server 2022 Windows Server 2025 Windows Server 2025 (server Core Installation)
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-06-09T21:50:13.492Z

Reserved: 2026-05-18T23:53:33.896Z

Link: CVE-2026-47288

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-09T17:17:34.317

Modified: 2026-06-09T19:32:51.440

Link: CVE-2026-47288

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T22:30:14Z

Weaknesses