VYPR
Unrated severityNVD Advisory· Published Mar 10, 2026· Updated Apr 22, 2026

Windows Accessibility Infrastructure (ATBroker.exe) Elevation of Privilege Vulnerability

CVE-2026-24291

Description

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.

Affected products

21

Patches

Vulnerability mechanics

References

1

News mentions

1