Vulnerability · NVD
CVE-2026-27928
HIGH 8.7
Windows Hello Security Feature Bypass Vulnerability
EPSS
0.17%
exploit very unlikely
percentile 37.8%
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows Server 2025 (Server Core installation) 10.0.26100.32690 Windows Server 2025 10.0.26100.32690 Windows Server 2022 (Server Core installation) 10.0.20348.5020 Windows Server 2022 10.0.25398.2274 Windows Server 2019 (Server Core installation) 10.0.17763.8644 Windows Server 2019 10.0.17763.8644 Windows Server 2016 (Server Core installation) 10.0.14393.9060 Windows Server 2016 10.0.14393.9060