CVE-2026-49173 is a Windows Kernel elevation of privilege vulnerability caused by a use-after-free condition. Microsoft rates it at CVSS v3.1 7.8 (High) with a temporal score of 6.8. The attack vector is local, attack complexity is low, privileges required are low, and no user interaction is needed. If exploited, an attacker could gain SYSTEM privileges. Microsoft reports no public disclosure, no known exploitation, and exploit code maturity is unproven. Enterprise risk is primarily for systems where an attacker can already obtain local access; it is not a network-exploitable issue. Highlights: - CVSS scores: Base 7.8 - Temporal 6.8 - Exploit status & code maturity: Publicly Disclosed: No; Exploited: No; Exploit Code Maturity: UNPROVEN. - Impact: Elevation of Privilege; confidentiality, integrity, and availability impacts are all HIGH; successful exploitation could grant SYSTEM privileges. - Exploitation likelihood: Latest Software Release: Exploitation Less Likely; vector context is LOCAL, LOW attack complexity, LOW privileges required, and NO user interaction. - Severity for enterprise: High severity from a privilege-escalation standpoint, but enterprise exposure is lower than remote issues because exploitation requires local access. - Patch status: available Affected systems: - Windows 11 26H1 - unspecified