CVE Catalog
CVE-2026-42969
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk0.13%
32th percentile - higher than 32% of all known CVEs
Summary
Use of uninitialized resource in Windows Push Notifications allows an authorized attacker to disclose information locally.
Risk Assessment
An attacker with appropriate permissions may gain access to sensitive data, potentially leading to a breach of user privacy.
Recommendation
It is recommended to update the operating system to the latest version to mitigate the risks associated with this vulnerability.
Original NVD description (English source)
Use of uninitialized resource in Windows Push Notifications allows an authorized attacker to disclose information locally.

