CVE-2016-0099CISA KEVEPSS p98.3%

CVE-2016-0099Microsoft Windows Secondary Logon Service Privilege Escalation Vulnerability

Microsoft / Windows

Description

A privilege escalation vulnerability exists in Microsoft Windows if the Windows Secondary Logon Service fails to properly manage request handles in memory. An attacker who successfully exploited this vulnerability could run arbitrary code as an administrator.

Scoring

EPSS37.16% probability of exploitation · percentile 98.3% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-03-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Windows Secondary Logon Service Privilege Escalation Vulnerabilitykev-cve-2016-00990%live

Related by meaning· 5

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Windows Kernel Privilege Escalation Vulnerability
CVE
Microsoft Windows Privilege Escalation Vulnerability
CVE
Microsoft Win32k Privilege Escalation Vulnerability
CVE
Microsoft Windows CSRSS Security Feature Bypass Vulnerability
CVE
Microsoft Windows Improper Privilege Management Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.