Skip to main content

Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

© 2026 Mondoo, Inc.

Log in Get Assessment

Vulnerability IntelligenceCVE-2026-33826

CVE-2026-33826

HIGH8.0

Windows Active Directory Remote Code Execution Vulnerability

Published Apr 14, 2026

Modified Yesterday

Details

Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33826

https://www.cve.org/CVERecord?id=CVE-2026-33826

CVSS Analysis

CVSS v3.1

8.0

Exploitability

Attack Vector

AdjacentAV:A

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

HighA:H

8/CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weakness Type (CWE)

Input Validation

Improper Input Validation

Ecosystems

Timeline

PublishedApr 14, 2026

ModifiedApr 17, 2026

CVE-2026-33826 | Mondoo Vulnerability Intelligence