Windows User Interface Core Privilege Escalation Risk

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows User Interface Core Privilege Escalation Risk

CVE-2026-32163

Summary

An attacker can take control of your computer if they have authorized access to it. This is because of a weakness in how Windows handles certain interactions between different parts of the system. To protect yourself, ensure you have the latest version of Windows installed and apply any recommended security updates.

Original title

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

Original description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-362 Race Condition

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32163

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026