CVE-2026-32152

EUVD-2026-22537
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Windows Releases
Platform
Version
Windows 11
23H2 (arm64, x64)
KB5082052
24H2 (arm64, x64)
KB5083769
25H2 (arm64, x64)
KB5083769
26H1 (arm64, x64)
KB5083768
Windows Server 2022
23H2 Server Core
KB5082060
Server Core
KB5082142
Standard
KB5082142
Windows Server 2025
Server Core
KB5082063
Standard
KB5082063
Common Weakness Enumeration
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32152