Windows Cloud Files Mini Filter Driver Privilege Escalation

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.0

Windows Cloud Files Mini Filter Driver Privilege Escalation

CVE-2026-27926

Summary

A flaw in the Windows Cloud Files Mini Filter Driver could allow an authorized user to gain more powerful access to a Windows system. This could happen if an attacker can take advantage of a mistake in how the driver handles shared resources. To protect your system, you'll want to apply the latest security updates from Microsoft.

Original title

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

Original description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.0

Vulnerability type

CWE-362 Race Condition

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27926

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026