Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Mar 10, 2026· Updated Apr 14, 2026

Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2026-25189

Description

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Affected products

6

Microsoft/Windows 10 Version 1809v5
Range: 10.0.17763.0
Microsoft/Windows 10 Version 21H2v5
Range: 10.0.19044.0
Microsoft/Windows 10 Version 22H2v5
Range: 10.0.19045.0
Microsoft/Windows Server 2019v5
Range: 10.0.17763.0
Microsoft/Windows Server 2019 (Server Core installation)v5
Range: 10.0.17763.0
Microsoft/Windows Server 2022v5
Range: 10.0.20348.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25189mitrevendor-advisorypatch

News mentions

0

No linked articles in our index yet.