Windows Ancillary Function Driver Vulnerability Allowing Local Privilege Escalation

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows Ancillary Function Driver Vulnerability Allowing Local Privilege Escalation

CVE-2026-25176

Summary

A flaw in the Windows Ancillary Function Driver for WinSock allows an attacker with authorized access to a Windows system to potentially gain higher-level user privileges, which could lead to unauthorized access to sensitive data or system functions. This vulnerability affects Windows systems and requires immediate attention to prevent potential security breaches. Affected users should update their systems with the latest security patches to mitigate this risk.

Original title

Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Original description

Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-284 Improper Access Control

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25176

Published: 10 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026