CVE-2026-33694

· NIST NVD ↗

This vulnerability allows an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition potentially facilitates arbitrary code execution, whereby an attacker may exploit the vulnerability to execute malicious code with elevated SYSTEM privileges.

2026-04-23
Published

CWE codes

CWE-59

Sources