Skip to main content

Windows 11 26h1 CVE-2026-23671

HIGH
Race Condition (CWE-362)
2026-03-10 secure@microsoft.com
7.0
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.0 HIGH
AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 21:55 vuln.today
CVE Published
Mar 10, 2026 - 18:18 nvd
HIGH 7.0

DescriptionCVE.org

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to elevate privileges locally.

AnalysisAI

Privilege escalation in the Windows Bluetooth RFCOM Protocol Driver across Windows 11 26h1, Windows Server 2025, and Windows 10 1809 stems from improper synchronization of concurrent access to shared resources. An authenticated local attacker can exploit this race condition to gain elevated privileges on affected systems. No patch is currently available for this vulnerability.

Technical ContextAI

Classified as CWE-362 (Race Condition). Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to elevate privileges locally.

RemediationAI

Monitor vendor advisories for a patch.

CVE-2026-25173 HIGH POC
8.0 Mar 10

Remote code execution in Windows RRAS affects Windows 10 1607 and Windows Server 2022 23h2 through an integer overflow v

CVE-2026-44812 HIGH
7.8 Jun 09

Local code execution in Microsoft Windows Win32K GRFX (graphics) subsystem allows an attacker with low-privilege local a

CVE-2026-44803 HIGH
7.8 Jun 09

Local code execution in the Windows Win32K GRFX (graphics) subsystem allows an unauthorized attacker with the ability to

CVE-2026-50507 MEDIUM
6.8 Jun 09

BitLocker's protection mechanism on Windows fails to enforce a critical authentication or verification step, permitting

CVE-2026-45658 MEDIUM
6.8 Jun 09

Security feature bypass in Microsoft Windows BitLocker allows an attacker with physical access to circumvent the drive e

CVE-2026-42915 MEDIUM
5.5 Jun 09

Denial-of-service in the Windows TCP/IP stack allows an authenticated attacker on an adjacent network to crash the netwo

CVE-2026-42973 MEDIUM
5.5 Jun 09

Windows Push Notifications contains a use-of-uninitialized-resource flaw (CWE-200) that enables a locally authenticated

CVE-2026-42971 MEDIUM
5.5 Jun 09

Windows Push Notifications on multiple Windows 10, Windows 11, and Windows Server versions exposes sensitive memory cont

CVE-2026-42970 MEDIUM
5.5 Jun 09

Windows Push Notifications contains a use-of-uninitialized-resource flaw (CWE-200) that enables authenticated local atta

CVE-2026-45602 CRITICAL
9.1 Jun 09

Remote tampering in Microsoft Windows DHCP Server allows unauthenticated network attackers to manipulate critical data w

CVE-2026-25188 HIGH
8.8 Mar 10

Privilege escalation in Windows Telephony Service through heap buffer overflow affects Windows 10 1607, Windows 11 25h2,

CVE-2026-47653 HIGH
8.8 Jun 09

Remote code execution in Microsoft Remote Desktop Client occurs when a user connects to an attacker-controlled RDP serve

Share

CVE-2026-23671 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy