CVE-2026-54111
Received Received - Intake

Race Condition in Windows USB Print Driver Allows Privilege Escalation

Vulnerability report for CVE-2026-54111, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-14

Last updated on: 2026-07-14

Assigner: Microsoft Corporation

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-14
Last Modified
2026-07-14
Generated
2026-07-14
AI Q&A
2026-07-14
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
microsoft windows_usb_print_driver *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.
CWE-362 The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a race condition in the Windows USB Print Driver. A race condition occurs when multiple processes or threads access a shared resource without proper synchronization, leading to unpredictable behavior.

In this case, the improper synchronization in the Windows USB Print Driver allows an authorized attacker to exploit the race condition to elevate their privileges locally on the system. This means an attacker who already has some level of access to the system can gain higher privileges, potentially taking full control.

Impact Analysis

If you are affected by this vulnerability, an attacker with local access to your system could exploit it to elevate their privileges.

  • The attacker could gain administrative or system-level privileges, allowing them to install malicious software, modify or delete data, or create new accounts with full access.
  • This could lead to unauthorized access to sensitive information, disruption of system operations, or further compromise of the network if the affected system is part of a larger infrastructure.

The CVSS base score of 7.0 indicates a high severity, meaning the impact could be significant if exploited.

Compliance Impact

This vulnerability could impact compliance with several standards and regulations, depending on the context of the affected system.

  • GDPR: If the affected system processes personal data of EU citizens, a successful exploit could lead to unauthorized access or disclosure of this data. GDPR requires organizations to implement appropriate security measures to protect personal data, and a privilege escalation vulnerability could be seen as a failure to meet these requirements.
  • HIPAA: For organizations handling protected health information (PHI) in the U.S., this vulnerability could result in unauthorized access to PHI. HIPAA mandates safeguards to ensure the confidentiality, integrity, and availability of PHI, and a privilege escalation exploit could violate these safeguards.
  • Other standards like ISO 27001 or NIST frameworks require organizations to manage risks related to information security. This vulnerability represents a risk that may need to be addressed to maintain compliance with such standards.

Failure to patch or mitigate this vulnerability could result in non-compliance, potential fines, or legal consequences, depending on the applicable regulations.

Detection Guidance

The provided context does not include specific detection methods or commands for identifying this vulnerability on a network or system. This vulnerability is related to a race condition in the Windows USB Print Driver, which typically requires local access and specific conditions to exploit.

To detect potential exposure, you may check for the presence of affected Windows systems with USB printing functionality enabled. However, no direct commands or tools are mentioned in the provided resources.

Mitigation Strategies

The provided context does not include specific mitigation steps for this vulnerability. However, based on general practices for addressing privilege escalation vulnerabilities in Windows, you may consider the following:

  • Apply the latest security updates from Microsoft as soon as they are available. Refer to the Microsoft Security Update Guide for patches related to CVE-2026-54111.
  • Restrict local access to systems to authorized users only, as this vulnerability requires local privileges to exploit.
  • Monitor Microsoft's official communications for any additional guidance or workarounds related to this CVE.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-54111. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart