5.5
CVE-2026-20819
- EPSS 0.06%
- Veröffentlicht 13.01.2026 17:56:15
- Zuletzt bearbeitet 14.01.2026 20:33:03
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to disclose information locally.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows 11 23h2 Version < 10.0.22631.6491
Microsoft ≫ Windows 11 24h2 Version < 10.0.26100.7623
Microsoft ≫ Windows 11 25h2 Version < 10.0.26200.7623
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.06% | 0.172 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secure@microsoft.com | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
CWE-822 Untrusted Pointer Dereference
The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.