Windows Search Component Privilege Elevation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows Search Component Privilege Elevation Vulnerability

CVE-2026-27909

Summary

The Windows Search Component has a vulnerability that can allow an authorized user to gain elevated privileges on a local machine. This means an attacker with legitimate access to the system could potentially take control of the machine. To protect against this, it's essential to apply the latest updates and patches for the Windows Search Component.

Original title

Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally.

Original description

Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27909

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026