CVE-2026-24291

HIGH

Windows Accessibility Infrastructure - Privilege Escalation

Title source: llm

Description

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.

Exploits (4)

nomisec WORKING POC
by uname1able · poc
https://github.com/uname1able/CVE-2026-24291
nomisec SUSPICIOUS
by tracyliving606 · poc
https://github.com/tracyliving606/RegPwn
nomisec WORKING POC
by lennertdefauw · poc
https://github.com/lennertdefauw/CVE-2026-24291
nomisec WORKING POC
by n0isegat3 · poc
https://github.com/n0isegat3/RegPwnBRc4BOF

References (3)

Scores

CVSS v3 7.8
EPSS 0.0007
EPSS Percentile 22.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-732
Status published
Products (37)
microsoft/windows_10_1607 < 10.0.14393.8957 (2 CPE variants)
microsoft/windows_10_1809 < 10.0.17763.8511 (2 CPE variants)
microsoft/windows_10_21h2 < 10.0.19044.7058 (3 CPE variants)
microsoft/windows_10_22h2 < 10.0.19045.7058 (3 CPE variants)
Microsoft/Windows 10 Version 1607 10.0.14393.0 - 10.0.14393.8957
Microsoft/Windows 10 Version 1809 10.0.17763.0 - 10.0.17763.8511
Microsoft/Windows 10 Version 21H2 10.0.19044.0 - 10.0.19044.7058
Microsoft/Windows 10 Version 22H2 10.0.19045.0 - 10.0.19045.7058
microsoft/windows_11_23h2 < 10.0.22631.6783 (2 CPE variants)
microsoft/windows_11_24h2 < 10.0.26100.7979 (2 CPE variants)
... and 27 more
Published Mar 10, 2026
Tracked Since Mar 11, 2026