๐Ÿ” CVE Alert

CVE-2026-21517

MEDIUM 4.7

Windows App for Mac Installer Elevation of Privilege Vulnerability

CVSS Score
4.7
EPSS Score
0.0%
EPSS Percentile
10th

Improper link resolution before file access ('link following') in Windows App for Mac allows an authorized attacker to elevate privileges locally.

Vendor microsoft
Product windows app for mac
Ecosystems
Industries
TechnologyEnterprise
Published Feb 10, 2026
Last Updated Apr 10, 2026
Stay Ahead of the Next One

Get instant alerts for microsoft windows app for mac

Be the first to know when new medium vulnerabilities affecting microsoft windows app for mac are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Microsoft / Windows App for Mac
11.0.0 < 11.3.2

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
msrc.microsoft.com: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21517