CVE-2026-42902 | Microsoft PowerToys prior v0.99.1 improper authorization

A vulnerability, which was classified as critical, has been found in Microsoft PowerToys. Affected by this issue is some unknown functionality. This manipulation causes improper authorization.

This vulnerability is handled as CVE-2026-42902. It is possible to launch the attack on the local host. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More