How severe is CVE-2026-20808?

CVE-2026-20808 has a CVSS v3 score of 7 (HIGH).

CVE-2026-20808

7.0HIGH

Concurrent execution using shared resource with improper synchronization ('race condition') in Printer Association Object allows an authorized attacker to elevate privileges locally.

Published: 1/13/2026Updated: 1/14/2026

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Printer Association Object allows an authorized attacker to elevate privileges locally.

AI AnalysisPowered by AI

Affected Products

microsoftwindows_11_24h2

microsoftwindows_11_25h2

microsoftwindows_server_2022_23h2

microsoftwindows_server_2025

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20808
Vendor Advisory