Windows RPC API Privilege Escalation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows RPC API Privilege Escalation Vulnerability

CVE-2026-26183

Summary

An attacker with local access can potentially gain elevated privileges on a Windows system, allowing them to perform actions they shouldn't be able to do. This vulnerability affects various Windows versions and requires a malicious actor to be on the same network. To protect your system, ensure all Windows updates are installed and consider implementing additional security measures to limit local access.

Original title

Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.

Original description

Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-284 Improper Access Control

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26183

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026