CVE-2026-20858 Impact: Elevation of Privilege Max Severity: Important CVE.org link: CVE-2026-20858 Assigning CNA: Microsoft Weaknesses: - CWE-416: Use After Free - CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization (‘Race Condition’) CVSS Metrics: Base Score: 7.8 Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Summary: This vulnerability in Windows Management Services allows for elevation of privilege with a high impact. The issue stems from use-after-free and race condition weaknesses. It has a CVSS score of 7.8, indicating it requires local access, high complexity to exploit, low privileges, and no user interaction.