CVE-2026-58633

PUBLISHED

Desktop Window Manager Elevation of Privilege Vulnerability

Microsoft · Windows 11 version 26H1

Recommended Action

Track for updates. Assess relevance to your asset inventory and enrichment workflows.

Confidence
Exploitation Status
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
CVSS / EPSS
7.8 High

At a Glance

Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

windows microsoft
CVE Published
Jul 14, 2026
CVSS
7.8 High
EPSS
Low complexity No user interaction

Affected Versions

Vendor Product Version Status
Microsoft
Windows 11 version 26H1

10.0.28000.0 to < 10.0.28000.2525

Affected

CVE References

Recommended Actions

  • Track for updates. Assess relevance to your asset inventory and enrichment workflows.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.