How severe is CVE-2026-20860?

CVE-2026-20860 has a CVSS v3 score of 7.8 (HIGH).

CVE-2026-20860

7.8HIGH

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

게시됨: 1/13/2026업데이트됨: 1/14/2026

설명

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

AI 분석AI 기반

참조

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20860