CVE Catalog

CVE-2026-45598

HighCVSS 7.0
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.18%

8th percentile - higher than 8% of all known CVEs

Summary

A race condition in the Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally due to improper synchronization of shared resources.

Risk Assessment

An authorized attacker could escalate privileges, potentially leading to full system compromise and access to sensitive data.

Recommendation

Apply the security update from Microsoft immediately and monitor systems for exploitation attempts.

Original NVD description (English source)

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS