CVE-2026-20938

Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.

More information : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20938