CVE-2026-20851 | Microsoft Windows 11 24H2/11 25H2/Server 2025 Capability Access Management Service out-of-bounds

A vulnerability was found in Microsoft Windows 11 24H2/11 25H2/Server 2025. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Capability Access Management Service. The manipulation leads to out-of-bounds read.

This vulnerability is documented as CVE-2026-20851. The attack needs to be performed locally. There is not any exploit available.

Applying a patch is the recommended action to fix this issue.VulDB Recent EntriesRead More