CVE-2026-42989 | Microsoft Windows up to Server 2025 Winlogon link following
A vulnerability was found in Microsoft Windows. It has been classified as critical. Affected by this vulnerability is an unknown functionality of the component Winlogon. Performing a manipulation results in link following.
This vulnerability was named CVE-2026-42989. The attack needs to be approached locally. There is no available exploit.
Upgrading the affected component is recommended.