CVE-2026-27924 - Vulnerability Details

- Desktop Window Manager Elevation of Privilege Vulnerability

Description

Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

Published: 2026-04-14

Score: 7.8 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

An use‑after‑free flaw in the Desktop Window Manager component permits an attacker with local or authorized access to corrupt memory and gain elevated privileges. The vulnerability enables the execution of arbitrary code under the context of a higher‑privileged account, potentially compromising confidentiality, integrity, and availability on the affected machine. The weakness corresponds to an unsafe handling of freed memory resources.

Affected Systems

Systems affected include Windows 10 version 21H2 and 22H2, Windows 11 version 23H2 and 22H3, and Windows Server 2022 and the 23H2 Edition running Server Core. The issue exists on x86, x64, and ARM64 architectures as indicated by the affected CPE entries. Administrators should verify whether these operating system builds are present in their environment.

Risk and Exploitability

The severity rating is CVSS 7.8, indicating a moderate to high impact. Exploitability is not quantified by an EPSS score and the vulnerability is not listed in the KEV catalog, suggesting it has not yet seen widespread exploitation. The attack requires local, authorized access and relies on an earlier use‑after‑free condition, meaning a typical attacker must first obtain some local foothold. Once the memory corruption occurs, privilege escalation is possible within the same session.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Microsoft

Windows 10 Version 21H2

affected

Version	Status	Constraints
`10.0.19044.0`	affected	< 10.0.19044.7184

Microsoft

Windows 10 Version 22H2

affected

Version	Status	Constraints
`10.0.19045.0`	affected	< 10.0.19045.7184

Microsoft

Windows 11 version 22H3

affected

Version	Status	Constraints
`10.0.22631.0`	affected	< 10.0.22631.6936

Microsoft

Windows 11 Version 23H2

affected

Version	Status	Constraints
`10.0.22631.0`	affected	< 10.0.22631.6936

Microsoft

Windows Server 2022

affected

Version	Status	Constraints
`10.0.20348.0`	affected	< 10.0.20348.5020

Microsoft

Windows Server 2022, 23H2 Edition (Server Core installation)

affected

Version	Status	Constraints
`10.0.25398.0`	affected	< 10.0.25398.2274

No data.

Vendor Product Confidence Versions

Microsoft

Windows 10 21h2

86%

Version	Status	Scheme	Platform
`[10.0.19044.0,10.0.19044.7184)`	affected	generic	['32-bit_systems', 'arm64-based_systems', 'x64-based_systems']

Microsoft

Windows 10 22h2

86%

Version	Status	Scheme	Platform
`[10.0.19045.0,10.0.19045.7184)`	affected	generic	['32-bit_systems', 'arm64-based_systems', 'x64-based_systems']

Microsoft

Windows 11 22h3

86%

Version	Status	Scheme	Platform
`[10.0.22631.0,10.0.22631.6936)`	affected	generic	['arm64-based_systems']

Microsoft

Windows 11 23h2

86%

Version	Status	Scheme	Platform
`[10.0.22631.0,10.0.22631.6936)`	affected	generic	['x64-based_systems']

Microsoft

Windows Server 2022

95%

Version	Status	Scheme	Platform
`[10.0.25398.0,10.0.25398.2274)`	affected	generic	['x64-based_systems']

Microsoft

Windows Server 2022

100%

Version	Status	Scheme	Platform
`[10.0.20348.0,10.0.20348.5020)`	affected	generic	['x64-based_systems']

Microsoft

Windows Server 2022, 23h2 Edition (server Core Installation)

82%

Version	Status	Scheme	Platform
`[10.0.25398.0,10.0.25398.2274)`	affected	generic	['x64-based_systems']

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Install the latest Windows security updates that address this Desktop Window Manager flaw.
If an update is not yet available, limit access to the Desktop Window Manager service and monitor for anomalous activity.
Regularly review system logs for signs of privilege escalation attempts.

Generated by OpenCVE AI on April 14, 2026 at 19:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00044.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27924

History

Wed, 15 Apr 2026 21:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Microsoft windows 10 21h2 Microsoft windows 10 22h2 Microsoft windows 11 22h3 Microsoft windows 11 23h2 Microsoft windows Server 2022, 23h2 Edition (server Core Installation)
Vendors & Products		Microsoft windows 10 21h2 Microsoft windows 10 22h2 Microsoft windows 11 22h3 Microsoft windows 11 23h2 Microsoft windows Server 2022, 23h2 Edition (server Core Installation)

Tue, 14 Apr 2026 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 14 Apr 2026 17:30:00 +0000

Type	Values Removed	Values Added
Description		Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
Title		Desktop Window Manager Elevation of Privilege Vulnerability
First Time appeared		Microsoft Microsoft windows 10 21h2 Microsoft windows 10 22h2 Microsoft windows 11 23h2 Microsoft windows Server 2022 Microsoft windows Server 23h2
Weaknesses		CWE-416
CPEs		cpe:2.3:o:microsoft:windows_10_21H2:::::::x86:* cpe:2.3:o:microsoft:windows_10_22H2:::::::x64:* cpe:2.3:o:microsoft:windows_11_23H2:::::::arm64:* cpe:2.3:o:microsoft:windows_11_23H2:::::::x64:* cpe:2.3:o:microsoft:windows_server_2022:::::::: cpe:2.3:o:microsoft:windows_server_23h2::::::::
Vendors & Products		Microsoft Microsoft windows 10 21h2 Microsoft windows 10 22h2 Microsoft windows 11 23h2 Microsoft windows Server 2022 Microsoft windows Server 23h2
References		https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27924
Metrics		cvssV3_1 `{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C'}`

Subscriptions

Microsoft Windows 10 21h2 Windows 10 21h2 Windows 10 22h2 Windows 10 22h2 Windows 11 22h3 Windows 11 23h2 Windows 11 23h2 Windows Server 2022 Windows Server 2022, 23h2 Edition (server Core Installation) Windows Server 23h2

MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2026-04-14T16:57:14.485Z

Updated: 2026-04-15T21:54:14.773Z

Reserved: 2026-02-24T21:35:49.687Z

Link: CVE-2026-27924

Vulnrichment

Updated: 2026-04-14T19:35:42.856Z

NVD

Status : Received

Published: 2026-04-14T18:17:03.020

Modified: 2026-04-14T18:17:03.020

Link: CVE-2026-27924

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-15T21:00:09Z

Weaknesses

CWE-416

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object