Windows Connected Devices Platform Service
by Microsoft
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-21234 | 0.00 | — | 0.00 | Feb 10, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-54114 | 0.00 | — | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-48000 | 0.00 | — | 0.01 | Jul 8, 2025 | Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally. |
- CVE-2026-21234Feb 10, 2026risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-54114Sep 9, 2025risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
- CVE-2025-48000Jul 8, 2025risk 0.00cvss —epss 0.01
Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.