Windows Storage Spaces can allow unauthorized access to sensitive data

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows Storage Spaces can allow unauthorized access to sensitive data

CVE-2026-32076

Summary

If used by a malicious user, Windows Storage Spaces can allow an attacker to access sensitive data they shouldn't be able to see. This is a concern if you're using Storage Spaces on your Windows servers. To stay safe, update your Windows systems with the latest security patches.

Original title

Out-of-bounds read in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.

Original description

Out-of-bounds read in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-125 Out-of-bounds Read

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32076

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026