Severity: Critical
A critical vulnerability has been disclosed in Microsoft Windows DNS, affecting multiple Windows desktop and server operating systems commonly used across enterprise and financial infrastructure environments.
The vulnerability, tracked as CVE-2026-41096, is a heap-based buffer overflow within the Windows DNS client which allows an unauthorized attacker to execute code over a network.
This vulnerability could be exploited by an attacker by sending a specially crafted DNS response which causes the DNS client to incorrectly process the response and corrupt the device’s memory. In certain cases this could result in RCE (Remote Code Execution) on the affected system without authentication.
Given the widespread reliance on DNS services within interconnected environments, exploitation of this vulnerability could pose a significant risk to system integrity, service availability, and network security. As part of Beeks’ commitment to supporting operational resilience and cyber risk management, this advisory is intended to help organisations assess exposure and implement appropriate mitigations.
Affected Software:
- Windows 11 23H2 – 26H1
- Windows Server 2022
- Windows Server 2025
Immediate Recommended Actions:
- Apply latest security patch released by Microsoft.
Further Information:
For detailed information on the vulnerability, please refer to the following sources:
https://nvd.nist.gov/vuln/detail/CVE-2026-41096
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41096
For detailed information on how to apply the security patch for this vulnerability, please refer to:
https://msrc.microsoft.com/update-guide/releaseNote/2026-May
If you have any questions or require further assistance, please contact [email protected] or reach out to your Beeks account representative.
This advisory is issued to help ensure the security of your systems and prevent unauthorised access to sensitive data. Beeks remains committed to providing timely security information and support to safeguard your infrastructure.
Beeks will continue to monitor this, and related any vulnerabilities, and provide updates through our Security Advisory Feed.
