Vulnerability · NVD
CVE-2026-20854
CRITICAL 7.5
Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability
EPSS
0.10%
exploit very unlikely
percentile 27.4%
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.