CVE-2026-33694

Vulnerability Description

This vulnerability allows an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition potentially facilitates arbitrary code execution, whereby an attacker may exploit the vulnerability to execute malicious code with elevated SYSTEM privileges.

Related Weaknesses (CWE)

CWE-59

References

https://tenable.com/security/tns-2026-12
https://tenable.com/security/tns-2026-13

FAQ

What is CVE-2026-33694?

CVE-2026-33694 is a documented vulnerability. This vulnerability allows an attacker to create a junction, enabling the deletion of arbitrary files with SYSTEM privileges. As a result, this condition potentially facilitates arbitrary code executio...

How severe is CVE-2026-33694?

CVSS scoring is not yet available for CVE-2026-33694. Check NVD for updates.

Is there a patch for CVE-2026-33694?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.