CVE-2026-32161
HIGHWindows Native WiFi Miniport Driver Remote Code Execution Vulnerability
Title source: cnaDescription
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver allows an unauthorized attacker to execute code over an adjacent network.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
patch
Windows Native WiFi Miniport Driver Remote Code Execution Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32161
Scores
CVSS v3
7.5
EPSS
0.0008
EPSS Percentile
23.4%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-362
CWE-416
Status
published
Products (36)
Microsoft/Windows 10 Version 1607
10.0.14393.0 - 10.0.14393.9140
Microsoft/Windows 10 Version 1809
10.0.17763.0 - 10.0.17763.8755
Microsoft/Windows 10 Version 21H2
10.0.19044.0 - 10.0.19044.7291
Microsoft/Windows 10 Version 22H2
10.0.19045.0 - 10.0.19045.7291
Microsoft/Windows 11 version 22H3
10.0.22631.0 - 10.0.22631.7079
Microsoft/Windows 11 Version 23H2
10.0.22631.0 - 10.0.22631.7079
Microsoft/Windows 11 Version 24H2
10.0.26100.0 - 10.0.26100.8457
Microsoft/Windows 11 Version 25H2
10.0.26200.0 - 10.0.26200.8457
Microsoft/Windows 11 version 26H1
10.0.28000.0 - 10.0.28000.2113
Microsoft/Windows Server 2012
6.2.9200.0 - 6.2.9200.26079
... and 26 more
Published
May 12, 2026
Tracked Since
May 12, 2026