CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-48574

highCVSS 7.8covered by 1 sourcefirst seen 2026-06-09
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally.

CSIRTS triage

What
A heap-based buffer overflow allows unauthorized code execution.
Who is affected
Users of Windows Media are affected by this vulnerability.
Urgency
High urgency for remediation due to the potential for remote code execution with a CVSS score of 7.8.
Action
Apply the latest security patch to mitigate this vulnerability.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-48574

Get an email if CVE-2026-48574 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-48574

CVE.org record

Embed the live status

CVE-2026-48574 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-48574 status](https://www.csirts.com/badge/CVE-2026-48574)](https://www.csirts.com/cve/CVE-2026-48574)