Windows File Explorer leaks sensitive information to local attackers

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.5

Windows File Explorer leaks sensitive information to local attackers

CVE-2026-32084

Summary

If you use Windows File Explorer, an attacker with normal user rights on your computer can see sensitive information. This could be useful for a malicious user to learn more about your system or plans. Update your Windows to fix this issue.

Original title

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

Original description

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

nvd CVSS3.1 5.5

Vulnerability type

CWE-200 Information Exposure

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32084

Published: 14 Apr 2026 · Updated: 15 Apr 2026 · First seen: 14 Apr 2026