Windows File Explorer Leaks Sensitive Information to Local Attackers

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.5

Windows File Explorer Leaks Sensitive Information to Local Attackers

CVE-2026-32081

Summary

Windows File Explorer has a flaw that lets attackers who are already on a computer see sensitive information. This is a concern for organizations that store confidential data on their computers. To mitigate this risk, ensure that only necessary files are stored on local computers and consider using encryption or secure storage solutions.

Original title

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

Original description

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

nvd CVSS3.1 5.5

Vulnerability type

CWE-200 Information Exposure

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32081

Published: 14 Apr 2026 · Updated: 15 Apr 2026 · First seen: 14 Apr 2026