Unrated severityNVD Advisory· Published Jan 13, 2026· Updated Apr 1, 2026
Capability Access Management Service (camsvc) Information Disclosure Vulnerability
CVE-2026-20835
Description
Out-of-bounds read in Capability Access Management Service (camsvc) allows an authorized attacker to disclose information locally.
Affected products
5- Range: 10.0.26100.0
- Range: 10.0.26200.0
- Microsoft/Windows Server 2022, 23H2 Edition (Server Core installation)v5Range: 10.0.25398.0
- Range: 10.0.26100.0
- Microsoft/Windows Server 2025 (Server Core installation)v5Range: 10.0.26100.0
Patches
Vulnerability mechanics
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20835mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.