Windows Speech Brokered API Privilege Escalation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Windows Speech Brokered API Privilege Escalation Vulnerability

CVE-2026-32089

Summary

An unauthorized escalation of privileges can occur when using the Windows Speech Brokered API. An attacker with valid credentials can potentially gain higher-level access to a system. To mitigate this, ensure you have the latest updates installed and follow proper security best practices.

Original title

Use after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

Original description

Use after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-362 Race Condition

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32089

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026