Impact
A use‑after‑free flaw in the Windows kernel allows an authorized local attacker to elevate privileges to that of the Windows NT kernel, effectively gaining SYSTEM or administrator rights. This could enable the attacker to execute arbitrary code with full system privileges, potentially compromising data confidentiality, integrity, and availability.
Affected Systems
Microsoft Windows 10 versions 1607, 1809, 21H2, and 22H2; Microsoft Windows 11 versions 23H2, 24H2, 25H2, 22H3, and 26H1; Microsoft Windows Server releases 2012 through Server 2025, including all standard and server‑core installations and all supported CPU architectures. All systems represented by the provided list of CPE identifiers are affected.
Risk and Exploitability
The CVSS score of 7.8 indicates high severity, while the EPSS score of 4% shows a moderate probability of exploitation. The vulnerability is not listed in the CISA KEV catalog, reinforcing its limited exploit likelihood. The description specifies only local privilege escalation; therefore, the likely attack vector is a local user with authorized access performing actions that trigger the use‑after‑free condition. No remote exploitation scenario is indicated in the available data.
OpenCVE Enrichment