CVE-2026-58602 is a Windows Kernel-Mode Driver use-after-free vulnerability that can be exploited for elevation of privilege to SYSTEM. Microsoft rates it CVSS v3.1 base 7.8 and temporal 6.8, with a LOCAL attack vector, LOW attack complexity, LOW privileges required, and no user interaction. Microsoft reports no public disclosure and no known exploitation; exploit code maturity is UNPROVEN. Because this is a local privilege escalation issue, enterprise risk is primarily on systems where attackers can already obtain local execution or low-privilege access. Highlights: - CVSS scores: Base 7.8 - Temporal 6.8 - Exploit status & code maturity: Publicly Disclosed: No; Exploited: No; Exploit Code Maturity: UNPROVEN. - Impact: Elevation of Privilege; confidentiality, integrity, and availability impacts are all HIGH. Microsoft says a successful attacker could gain SYSTEM privileges. - Exploitation likelihood: Exploitation Unlikely; the vector is LOCAL with LOW attack complexity and LOW privileges required, so it is not a network-reachable vulnerability. - Severity for enterprise: High severity from a host-compromise perspective, but lower exposure than remote vulnerabilities because exploitation requires local access. Higher concern on shared systems or endpoints where untrusted local code may run. - Patch status: available Affected systems: - Windows 11 24H2 - Windows 11 25H2 - Windows 11 26H1 - Windows 11 unspecified - Windows Server 2025