CNNVD-202601-2119 Information
CNNVD ID
CNNVD-202601-2119
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
Microsoft Windows WalletService是美国微软(Microsoft)公司的一个应用程序。托管钱包客户端使用的对象。 Microsoft Windows WalletService存在竞争条件问题漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems。
Description (English)
Microsoft Windows WalletService is an application by Microsoft USA. Saves the object that the wallet client uses. Microsoft Windows WalletService has a loophole in competition conditions. The attackers use this loophole to enhance their authority. The following products and versions have been affected: Windows 10 Version 1009 for 32-bit Systems, Windows 10-Version 10-Version 21H2 for 32-bit Systems, Windows 10 Version 21H2 for ARM 64-basted Systems, Windows 22H2 for 32-bit Systems, Windows 22H2 for 32-bit Systems, Windows Services 11-Hisments 25-Hisments 5-Hass 64-years 11-years
Hazard Level
Medium
Vulnerability Type
竞争条件问题
Affected Vendor
微软
Published
2026-01-13
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20853
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20853
Share on: