CVE-2026-25184 | THREATINT

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Applocker Filter Driver (applockerfltr.sys) allows an authorized attacker to elevate privileges locally.

PUBLISHED Reserved 2026-01-29 | Published 2026-04-14 | Updated 2026-06-01 | Assigner microsoft

HIGH: 7.0CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Problem types

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Product status

10.0.22631.0 (custom) before 10.0.22631.6936

affected

10.0.22631.0 (custom) before 10.0.22631.6936

affected

10.0.26100.0 (custom) before 10.0.26100.8246

affected

10.0.26200.0 (custom) before 10.0.26200.8246

affected

10.0.28000.0 (custom) before 10.0.28000.1836

affected

10.0.25398.0 (custom) before 10.0.25398.2274

affected

10.0.26100.0 (custom) before 10.0.26100.32690

affected

10.0.26100.0 (custom) before 10.0.26100.32690

affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25184 (Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability) vendor-advisory patch

cve.org (CVE-2026-25184)

nvd.nist.gov (CVE-2026-25184)

Download JSON