CVE-2026-20854 | Microsoft Windows 11 24H2/11 25H2/Server 2025 Local Security Authority Subsystem Service use after free

A vulnerability labeled as critical has been found in Microsoft Windows 11 24H2/11 25H2/Server 2025. This issue affects some unknown processing of the component Local Security Authority Subsystem Service. Such manipulation leads to use after free.

This vulnerability is traded as CVE-2026-20854. The attack may be launched remotely. There is no exploit available.

Applying a patch is advised to resolve this issue.VulDB Recent EntriesRead More