Home
HIGH: 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C 10.0.26100.0 (custom) before 10.0.26100.8875
affected
10.0.26200.0 (custom) before 10.0.26200.8875
affected
10.0.28000.0 (custom) before 10.0.28000.2525
affected
10.0.20348.0 (custom) before 10.0.20348.5386
affected
10.0.26100.0 (custom) before 10.0.26100.33158
affected
10.0.26100.0 (custom) before 10.0.26100.33158
affected
Description
Missing cryptographic step in Windows CryptoAPI allows an authorized attacker to perform tampering locally.
Problem types
CWE-325: Missing Cryptographic Step
Product status
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2026-55144 (Windows Cryptography API: Next Generation (CNG) Tampering Vulnerability)