Windows WalletService Privilege Elevation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.0

Windows WalletService Privilege Elevation Vulnerability

CVE-2026-32080

Summary

An attacker with authorized access to Windows WalletService can potentially gain elevated privileges on a local machine. This means the attacker could access sensitive data or make changes to the system that a standard user account wouldn't normally be able to. To address this, update Windows to the latest version or apply the recommended fix from Microsoft.

Original title

Use after free in Windows WalletService allows an authorized attacker to elevate privileges locally.

Original description

Use after free in Windows WalletService allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.0

Vulnerability type

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32080

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026