A vulnerability was found in Microsoft Windows up to Server 2025. It has been rated as very critical. Impacted is an unknown function of the component Windows Server Update Service. Performing a manipulation results in missing authentication.

This vulnerability is known as CVE-2026-50444. Remote exploitation of the attack is possible. No exploit is available.