You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2026 32068
About this tag
CVE-2026-32068 is a high-severity vulnerability in the Windows Simple Search and Discovery Protocol (SSDP) Service, published on April 14, 2026. It involves a race condition that allows an authorized local attacker to elevate privileges. The issue has a CVSS 3.1 base score of 7.0. This CVE highlights ongoing security concerns with Windows' discovery stack, which has repeatedly appeared in Microsoft's vulnerability pipeline. For IT administrators and security professionals, understanding CVE-2026-32068 is important for prioritizing patches and hardening systems against local privilege escalation attacks targeting the SSDP service.
When Microsoft assigns a fresh CVE to the Windows Simple Search and Discovery Protocol (SSDP) Service, it is usually a sign that a long-lived component has once again become a local privilege-escalation target. CVE-2026-32068 was published on April 14, 2026, and the early description points to a...