CNNVD-202601-2108 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2108

CVE-2026-20866

  • CNNVD Published: 2026-01-13

Description (Chinese)

Microsoft Windows是美国微软(Microsoft)公司的一套个人设备使用的操作系统。 Microsoft Windows存在竞争条件问题漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows Server 2025,Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems。

Description (English)

Microsoft Windows is an operating system used by Microsoft (MS) in the United States of America for personal equipment. Microsoft Windows has a gap in competition conditions. The attackers use this loophole to enhance their authority. The following products and versions have been affected: Windows Server 2025, Windows 10 Chemicals, Windows 32-bit Systems, Windows 10 Victims 1809 for x64-cased Systems, Windows Server 2019 (Server Corporation), Windows Server 2022, Windows Server 2022 (Wowover Management), Windows Services 10-Articles Twenty-Haunder Twenty-Haunder Twenty-five-Haunder-Sys, Twenty-Second and Twenty-five-West Twos, for West Twos, for West Twos and Twos, for West Twos and Twos, for West Twos and Twos, for West Twos and Twos, for West Twos and Twos and Twos, for West Twos and Twos, for West Twos and Twos, for West Twos and Twos and Twos.

Hazard Level

Medium

Vulnerability Type

竞争条件问题

Affected Vendor

微软

Published

2026-01-13

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20866

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20866

Share on: