CVE Catalog

CVE-2026-44802

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.06%

19th percentile - higher than 19% of all known CVEs

Summary

A use after free vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate privileges.

Risk Assessment

This vulnerability could lead to unauthorized access and privilege escalation, posing a significant security risk to the organization.

Recommendation

It is recommended to update Windows to the latest version to mitigate this vulnerability and to monitor systems for potential exploitation attempts.

Original NVD description (English source)

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS