How severe is CVE-2026-20853?

CVE-2026-20853 has a CVSS v3 score of 7.4 (HIGH).

CVE-2026-20853

7.4HIGH

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows WalletService allows an unauthorized attacker to elevate privileges locally.

Published: 1/13/2026Updated: 1/14/2026

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows WalletService allows an unauthorized attacker to elevate privileges locally.

AI AnalysisPowered by AI

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20853