CVE-2026-24291

Publication date

2026-03-10 17:04:43

Family

microsoft

State

PUBLISHED

Description

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.