Windows Shell Privilege Elevation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.0

Windows Shell Privilege Elevation Vulnerability

CVE-2026-26166

Summary

An attacker with authorized access to Windows Shell can potentially gain elevated privileges on a local machine. This means they could gain control over the system or access sensitive information. To protect your system, apply the latest Windows updates as soon as possible.

Original title

Double free in Windows Shell allows an authorized attacker to elevate privileges locally.

Original description

Double free in Windows Shell allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.0

Vulnerability type

CWE-415

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26166

Published: 14 Apr 2026 · Updated: 15 Apr 2026 · First seen: 14 Apr 2026