CVE-2026-27906

MEDIUM

Windows Hello Security Feature Bypass Vulnerability

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-27906. PoCs published by ByteWraith1.

AI-analyzed exploit summary The repository claims to provide a PoC for CVE-2026-27906 but lacks actual exploit code, instead redirecting users to an external download link. The README contains vague descriptions and no technical details about the vulnerability.

Description

Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.

Exploits (1)

nomisec SUSPICIOUS

by ByteWraith1 · poc

https://github.com/ByteWraith1/CVE-2026-27906

View Code ZIP pw:eip

The repository claims to provide a PoC for CVE-2026-27906 but lacks actual exploit code, instead redirecting users to an external download link. The README contains vague descriptions and no technical details about the vulnerability.

Classification

Suspicious 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Theoretical

Target: OpenCTI platform versions 6.6.0 through 6.9.12

No auth needed

Prerequisites: Python 3.8+ · requests library · argparse library

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed May 07, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory patch

Windows Hello Security Feature Bypass Vulnerability

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27906

Scores

CVSS v3 4.4

EPSS 0.0039

EPSS Percentile 30.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-20

Status published

Products (14)

Microsoft/Windows 10 Version 21H2 10.0.19044.0 - 10.0.19044.7184

Microsoft/Windows 10 Version 22H2 10.0.19045.0 - 10.0.19045.7184

Microsoft/Windows 11 version 22H3 10.0.22631.0 - 10.0.22631.6936

Microsoft/Windows 11 Version 23H2 10.0.22631.0 - 10.0.22631.6936

Microsoft/Windows 11 Version 24H2 10.0.26100.0 - 10.0.26100.32690

Microsoft/Windows 11 Version 24H2 10.0.26100.0 - 10.0.26100.8246

Microsoft/Windows 11 Version 25H2 10.0.26200.0 - 10.0.26200.8246

Microsoft/Windows 11 version 26H1 10.0.28000.0 - 10.0.28000.1836

microsoft/windows_10_21h2 < 10.0.19044.7184 (3 CPE variants)

microsoft/windows_10_22h2 < 10.0.19045.7184 (3 CPE variants)

... and 4 more

Published Apr 14, 2026

Tracked Since Apr 14, 2026