CVE-2026-32219
Double Free in Microsoft Brokering File System Elevates Privileges
Publication date: 2026-04-14
Last updated on: 2026-04-20
Assigner: Microsoft Corporation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| microsoft | windows_11_24h2 | to 10.0.26100.8246 (exc) |
| microsoft | windows_11_24h2 | to 10.0.26100.8246 (exc) |
| microsoft | windows_11_25h2 | to 10.0.26200.8246 (exc) |
| microsoft | windows_11_25h2 | to 10.0.26200.8246 (exc) |
| microsoft | windows_11_26h1 | to 10.0.28000.1836 (exc) |
| microsoft | windows_11_26h1 | to 10.0.28000.1836 (exc) |
| microsoft | windows_server_2025 | to 10.0.26100.32690 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-415 | The product calls free() twice on the same memory address. |
| CWE-362 | The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently. |
Attack-Flow Graph
AI Powered Q&A
What immediate steps should I take to mitigate this vulnerability?
This vulnerability allows an authorized attacker to elevate privileges locally by exploiting a double free in the Microsoft Brokering File System.
To mitigate this vulnerability, it is recommended to apply the security updates provided by Microsoft as soon as they are available.
Can you explain this vulnerability to me?
This vulnerability is a double free issue in the Microsoft Brokering File System. A double free occurs when a program attempts to free the same memory location twice, which can lead to memory corruption. In this case, an authorized attacker can exploit this flaw to elevate their privileges locally on the affected system.
How can this vulnerability impact me? :
The vulnerability allows an authorized attacker to elevate their privileges locally. This means that an attacker who already has some level of access to the system could gain higher-level permissions, potentially allowing them to execute unauthorized actions, access sensitive data, or compromise system integrity.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability allows an authorized attacker to elevate privileges locally through a double free in the Microsoft Brokering File System.
Such elevation of privilege vulnerabilities can potentially lead to unauthorized access or modification of sensitive data, which may impact compliance with standards like GDPR and HIPAA that require strict controls on data confidentiality, integrity, and access.
However, the provided information does not explicitly describe the direct effects of this vulnerability on compliance with these regulations.