CVE-2026-50502 - Windows Event Logging Service Remote Code Execution Vulnerability - is an insufficient granularity of access control issue that can lead to remote code execution on affected Windows systems. Microsoft rates it CVSS v3.1 base 8.0 (High) with a temporal score of 7.0; the vector is NETWORK, LOW attack complexity, LOW privileges required, and USER INTERACTION REQUIRED, with HIGH confidentiality, integrity, and availability impact. Microsoft reports no public disclosure and no known exploitation, with exploit code maturity UNPROVEN. Because it is network-reachable and can result in full code execution, it is a significant enterprise risk for exposed Windows hosts, though the required user interaction reduces immediate exploitability. Highlights: - CVSS scores: Base 8.0 - Temporal 7.0 - Exploit status & code maturity: Publicly Disclosed: No; Exploited: No; Exploit Code Maturity: UNPROVEN. - Impact: Remote Code Execution with HIGH confidentiality, HIGH integrity, and HIGH availability impacts. - Exploitation likelihood: Exploitation Less Likely; network vector with LOW attack complexity, LOW privileges required, and USER INTERACTION REQUIRED. - Severity for enterprise: High severity due to remote code execution over the network, but risk is moderated by the need for user interaction and the lack of known exploitation. - Patch status: available Affected systems: - Windows 10 1607, 1809, 21H2, 22H2 - Windows 11 24H2, 25H2, 26H1, unspecified - Windows Server 2012, 2012 R2, 2016, 2019, 2022, 2025