CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-42987

highCVSS 8.1covered by 1 sourcefirst seen 2026-06-09
Use after free in Windows Deployment Services allows an unauthorized attacker to execute code over a network.

CSIRTS triage

What
A use after free vulnerability in Windows Deployment Services allows unauthorized remote code execution.
Who is affected
Unauthorized attackers can exploit this vulnerability in Windows Deployment Services.
Urgency
Remediation is urgent due to the high severity and potential for exploitation.
Action
Patch Windows Deployment Services to mitigate this vulnerability.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-42987

Get an email if CVE-2026-42987 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-42987

CVE.org record

Embed the live status

CVE-2026-42987 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-42987 status](https://www.csirts.com/badge/CVE-2026-42987)](https://www.csirts.com/cve/CVE-2026-42987)