🟡 Medium | Source: Microsoft Security Response Center
CVE-2026-45602 is a tampering vulnerability affecting the Windows Dynamic Host Configuration Protocol (DHCP) service. This update is an informational change only, correcting the CWE classification with no change to severity, patch status, or exploitability. No new action is required as a result of this revision.
Security Architect’s Take: No immediate action is required from this update — verify that any existing mitigations or patches applied for CVE-2026-45602 remain in place, and update internal vulnerability tracking records to reflect the revised CWE classification.
Original advisory: CVE-2026-45602 Windows Dynamic Host Configuration Protocol (DHCP) Tampering Vulnerability