CVE-2026-26132

Received Received - Intake

Use-After-Free in Windows Kernel Enables Local Privilege Escalation

Publication date: 2026-03-10

Last updated on: 2026-03-24

Assigner: Microsoft Corporation

Description

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-03-10

Last Modified

2026-03-24

Generated

2026-06-16

AI Q&A

2026-03-10

EPSS Evaluated

2026-06-14

NVD

CVE-2026-26132

EUVD

EUVD-2026-10697

Affected Vendors & Products

Vendor	Product	Version / Range
microsoft	windows_10_21h2	to 10.0.19044.7058 (exc)
microsoft	windows_10_21h2	to 10.0.19044.7058 (exc)
microsoft	windows_10_21h2	to 10.0.19044.7058 (exc)
microsoft	windows_10_22h2	to 10.0.19045.7058 (exc)
microsoft	windows_10_22h2	to 10.0.19045.7058 (exc)
microsoft	windows_10_22h2	to 10.0.19045.7058 (exc)
microsoft	windows_11_23h2	to 10.0.22631.6783 (exc)
microsoft	windows_11_23h2	to 10.0.22631.6783 (exc)
microsoft	windows_11_24h2	to 10.0.26100.7979 (exc)
microsoft	windows_11_24h2	to 10.0.26100.7979 (exc)
microsoft	windows_11_25h2	to 10.0.26200.7979 (exc)
microsoft	windows_11_25h2	to 10.0.26200.7979 (exc)
microsoft	windows_11_26h1	to 10.0.28000.1719 (exc)
microsoft	windows_11_26h1	to 10.0.28000.1719 (exc)
microsoft	windows_server_2022	to 10.0.20348.4830 (exc)
microsoft	windows_server_2022_23h2	to 10.0.25398.2207 (exc)
microsoft	windows_server_2025	to 10.0.26100.32463 (exc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-416	The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

Attack-Flow Graph

Executive Summary

This vulnerability is a use after free issue in the Windows Kernel. It allows an authorized attacker to elevate their privileges locally on the affected system.

Impact Analysis

The impact of this vulnerability is that an attacker with local access can elevate their privileges, potentially gaining higher-level permissions than intended. This can lead to full control over the affected system.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate this vulnerability, apply the security updates provided by Microsoft as soon as possible.

Since the vulnerability allows local privilege escalation via a use after free in the Windows Kernel, limiting local access to authorized users and applying the latest patches are critical steps.

Hi! I’m here to help you understand CVE-2026-26132. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-26132

Use-After-Free in Windows Kernel Enables Local Privilege Escalation

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart