Vulnerability · NVD
CVE-2026-44807
HIGH 7.8
Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
Attack vector : Local
No user interaction
Show raw CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.06%
exploit very unlikely
percentile 19.1%
OS versions that fix this CVE
This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.
- Windows Fixed in Windows 11 26H1 · 2026-H1 10.0.28000.2269