CVE Catalog

CVE-2026-44804

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.06%

19th percentile - higher than 19% of all known CVEs

Summary

A use after free vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate privileges.

Risk Assessment

This vulnerability could allow attackers to gain higher privileges on the system, posing a significant security risk to the organization.

Recommendation

It is recommended to update Windows to the latest version to patch this vulnerability and to monitor the system for unauthorized activities.

Original NVD description (English source)

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS