Windows User Interface Core Privilege Elevation Exploit

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows User Interface Core Privilege Elevation Exploit

CVE-2026-32165

Summary

A vulnerability in Windows User Interface Core allows an attacker with normal user privileges to potentially gain elevated access to a Windows system. This could allow an attacker to access sensitive data or install malicious software on the system. Windows users should ensure their systems are up to date with the latest security patches to mitigate this risk.

Original title

Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

Original description

Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-362 Race Condition

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32165

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026