CVE-2026-55010

PUBLISHED

Minecraft Bedrock Dedicated Server Remote Code Execution Vulnerability

Microsoft · Minecraft Bedrock Dedicated Server

Recommended Action

Track for updates. Assess relevance to your asset inventory and enrichment workflows.

Confidence
Exploitation Status
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
CVSS / EPSS
9.8 Critical

At a Glance

Heap-based buffer overflow in Minecraft Bedrock Dedicated Server allows an unauthorized attacker to execute code over a network.

microsoft
CVE Published
Jul 14, 2026
CVSS
9.8 Critical
EPSS
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
Microsoft
Minecraft Bedrock Dedicated Server

-

Affected

CVE References

Recommended Actions

  • Track for updates. Assess relevance to your asset inventory and enrichment workflows.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.