Pricing Enterprise

CVE-2026-20854

7.5HIGH

Use after free in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to execute code over a network.

Published: 1/13/2026Updated: 1/14/2026

View on NVD View on MITRE

Description

Use after free in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to execute code over a network.

AI AnalysisPowered by AI

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20854