Windows Shell security feature bypass vulnerability with high CVSS score but requires user interaction. Affects primarily client systems with minimal internet-facing deployment likelihood.
Data Source: CIRCL
Confidence: MEDIUM
Exploitation Method: USER_INTERACTION
CVE Published: 2026-02-10
Added to CISA KEV: 2026-02-10 0 DAY BETWEEN CVE AND KEV
Regarding CVE-2026-21510, there is no specific information available about its exploitation, including whether it affects internet-facing applications, evidence of active exploitation, attack vectors, targeted attacks, or its status on the CISA Known Exploited Vulnerabilities (KEV) catalog.
The CISA KEV catalog is a resource that lists vulnerabilities that have been actively exploited in the wild, and organizations are encouraged to use it for vulnerability management prioritization [1][5]. CISA regularly updates this catalog with new vulnerabilities based on evidence of active exploitation [2][3]. However, CVE-2026-21510 is not mentioned in the provided information.
While some vulnerabilities have had exploitation efforts ongoing since specific dates [4], and CISA has added multiple vulnerabilities to its KEV catalog in early 2026 [2][3], there are no details linking CVE-2026-21510 to any of these activities or providing technical details about its exploitability.
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catal…
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
CISA added four actively exploited vulnerabilities to its KEV catalog, urging U.S. federal agencies to apply fixes by February 12, 2026.According to CrowdSec, exploitation efforts targeting CVE-2025-68645 have been ongoing since January 14, 2026. There are currently no details on how the other vulne…
Learn about the importance of CISA's Known Exploited Vulnerability (KEV) catalog and how to use it to help build a collective resilience across the cybersecurity community.