CVE-2026-26154

HIGH WAF: Medium

CVSS 7.5 Published: 2026-04-14

CWE-20

Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network.

WAF Coverage Analysis

Improper Input Validation Medium WAF Coverage

OWASP: A03:2021 Injection

920xxx - Protocol Enforcement 941xxx - XSS / XXE 942xxx - SQL Injection

Back to CVE Database