CVE Catalog

CVE-2026-44811

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.27%

18th percentile - higher than 18% of all known CVEs

Summary

A heap-based buffer overflow in the Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Risk Assessment

An attacker with limited privileges could gain access to critical system resources, leading to full system compromise.

Recommendation

Apply the security update provided by the vendor as part of the security patches immediately.

Original NVD description (English source)

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS