VYPR
Unrated severityNVD Advisory· Published Mar 10, 2026· Updated Apr 22, 2026

Windows Device Association Service Elevation of Privilege Vulnerability

CVE-2026-24295

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Association Service allows an authorized attacker to elevate privileges locally.

Affected products

18

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.