Windows Push Notifications Privilege Escalation Risk

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows Push Notifications Privilege Escalation Risk

CVE-2026-32160

Summary

A security flaw in Windows Push Notifications can allow an authorized user to gain more access to a system than they should have. This issue affects Windows users and can be exploited by an attacker who has already been granted some level of access to the system. To protect yourself, ensure you're running the latest version of Windows and apply any available security updates.

Original title

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

Original description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-362 Race Condition

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32160

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026