Windows Desktop Window Manager Local Privilege Escalation

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows Desktop Window Manager Local Privilege Escalation

CVE-2026-27924

Summary

A flaw in Windows Desktop Window Manager could allow an authorized user to gain elevated access to a system, potentially allowing them to access sensitive data or take control of the system. This issue affects systems running Windows and could be exploited by an attacker with legitimate access to the system. Users should update their Windows installation to the latest available patch to address this vulnerability.

Original title

Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

Original description

Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27924

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026