How severe is CVE-2026-20814?

CVE-2026-20814 has a CVSS v3 score of 7 (HIGH).

CVE-2026-20814

7.0HIGH

Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.

Published: 1/13/2026Updated: 1/14/2026

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.

AI AnalysisPowered by AI

Affected Products

microsoftwindows_10_1607

microsoftwindows_10_1809

microsoftwindows_10_21h2

microsoftwindows_10_22h2

microsoftwindows_11_23h2

microsoftwindows_11_24h2

microsoftwindows_11_25h2

microsoftwindows_server_2016

microsoftwindows_server_2019

microsoftwindows_server_2022

microsoftwindows_server_2022_23h2

microsoftwindows_server_2025

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20814
Vendor Advisory