CVE-2026-24287

HIGH

Windows Kernel - Privilege Escalation

Title source: llm

Description

External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.

References (1)

Scores

CVSS v3 7.8
EPSS 0.0007
EPSS Percentile 20.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-73
Status draft

Timeline

Published Mar 10, 2026
Tracked Since Mar 11, 2026