CVE-2026-27911
HIGH
NVD
CVSS Score
7.8
Severity
HIGH
Published
Apr 14, 2026
Vendor
unknown
Description
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.