Windows Local Privilege Escalation in Function Discovery Service

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.0

Windows Local Privilege Escalation in Function Discovery Service

CVE-2026-32150

Summary

The Function Discovery Service in Windows has a flaw that allows a local attacker to gain elevated privileges. This means an attacker with limited access to a Windows system could gain more control over the system. To protect your system, update to the latest version of Windows or apply the recommended patch.

Original title

Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.

Original description

Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.0

Vulnerability type

CWE-362 Race Condition

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32150

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026