CVE-2026-20921

HIGH(7.5)

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Risk Signal Score19/100 — NIEDRIG

CVSS 7.5 — Hoch

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

7.5

Technische Schwere

Beschreibung

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

Referenzen

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20921
https://www.vicarius.io/vsociety/posts/cve-2026-20921-detection-script-race-cond...
https://www.vicarius.io/vsociety/posts/cve-2026-20921-remediation-script-race-co...