CVE-2026-27920
HIGH
NVD
CVSS Score
7.8
Severity
HIGH
Published
Apr 14, 2026
Vendor
unknown
Description
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.