CVE-2026-7162 PUBLISHED

Assigner: CSA
Reserved: 27.04.2026 Published: 13.07.2026 Updated: 13.07.2026

Successful exploitation of the integer overflow vulnerability could allow an attacker to achieve system-level access to the affected software.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
CVSS Score: 7.8

Product Status

Vendor WinFsp
Product WinFsp
Versions Default: unaffected
  • Version 2.2.26112 and lower is affected

Solutions

Users and administrators of affected product versions are advised to update to the latest version immediately.

Credits

  • Tay Kiat Loong finder
  • uhg finder

References

Problem Types

  • CWE-190 Integer overflow or wraparound CWE