CVE-2026-35424

HIGH CVSS 7.5 View on NVD ↗

Description

Missing release of memory after effective lifetime in Windows Internet Key Exchange (IKE) Protocol allows an unauthorized attacker to deny service over a network.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35424

Published: May 12, 2026 18:17 UTC Modified: May 13, 2026 15:34 UTC