CVE Catalog

CVE-2026-48566

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.05%

16th percentile - higher than 16% of all known CVEs

Summary

An out-of-bounds read in the Windows DWM Core Library allows an authorized attacker to disclose information locally.

Risk Assessment

This vulnerability may lead to the disclosure of sensitive data on the system, posing a threat to the organization's information security.

Recommendation

It is recommended to monitor and update the Windows system to mitigate the risks associated with this vulnerability.

Original NVD description (English source)

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS