CVE Catalog

CVE-2026-42903

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.18%

39th percentile - higher than 39% of all known CVEs

Summary

A null pointer dereference in Windows Kerberos allows an authorized attacker to deny service over a network.

Risk Assessment

Attackers can exploit this vulnerability to disrupt service availability, potentially leading to downtime for the organization.

Recommendation

It is recommended to monitor and update Windows Kerberos systems to mitigate the risks associated with this vulnerability.

Original NVD description (English source)

Null pointer dereference in Windows Kerberos allows an authorized attacker to deny service over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS