VYPR
Unrated severityNVD Advisory· Published Mar 10, 2026· Updated Apr 14, 2026

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2026-23668

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

Affected products

17

Patches

Vulnerability mechanics

References

1

News mentions

4