🔴 Critical | Source: Microsoft Security Response Center
CVE-2026-59117 is a remote code execution vulnerability in Windows Terminal caused by an integer overflow flaw, meaning an attacker on a network could potentially run malicious code on an affected system without needing valid credentials. This is particularly concerning in cloud and enterprise environments where Windows Terminal is commonly used by engineers and administrators to manage Azure resources. If exploited, an attacker could gain a foothold on a privileged workstation, potentially escalating access to connected cloud infrastructure.
Security Architect’s Take: Prioritise patching Windows Terminal across all developer and administrator workstations with Azure access, and consider enforcing network segmentation or just-in-time access controls to limit lateral movement if exploitation occurs.
Original advisory: CVE-2026-59117 Windows Terminal Remote Code Execution Vulnerability