How severe is CVE-2026-20860?

CVE-2026-20860 has a CVSS v3 score of 7.8 (HIGH).

CVE-2026-20860

7.8HIGH

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

发布于: 1/13/2026更新于: 1/14/2026

描述

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

AI分析AI驱动

参考资料

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20860