Windows Speech Brokered Api Elevation of Privilege Vulnerability

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

Affected Products

Vendor	Product	Versions
Microsoft	Windows 10 Version 1607	10.0.14393.0, 10.0.17763.0, 10.0.19044.0, 10.0.19045.0, 10.0.22631.0, 10.0.22631.0, 10.0.26100.0, 10.0.26200.0, 10.0.28000.0, 10.0.14393.0, 10.0.14393.0, 10.0.17763.0, 10.0.17763.0, 10.0.20348.0, 10.0.25398.0, 10.0.26100.0, 10.0.26100.0

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
microsoft	windows	mitre_affected	90%
microsoft	windows 11 version 25h2	mitre_affected	90%
microsoft	windows server 2025 (server core installation)	mitre_affected	90%
microsoft	windows 11 version 24h2	mitre_affected	90%
microsoft	windows 11 version 22h3	mitre_affected	90%

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32090(vendor-advisory, patch)

Related News (2 articles)

Tier C

VulDB4h ago

CVE-2026-32090 | Microsoft Windows up to Server 2025 Speech Brokered API race condition

→ No new info (linked only)

Tier A

Microsoft MSRC8h ago

CVE-2026-32090 Windows Speech Brokered Api Elevation of Privilege Vulnerability

→ No new info (linked only)

CVSS 3.17.8 HIGH

VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

10.0.14393.906010.0.17763.864410.0.19044.718410.0.19045.718410.0.22631.693610.0.26100.3269010.0.26200.824610.0.28000.183610.0.20348.502010.0.25398.2274

CWECWE-362, CWE-416

PublishedApr 14, 2026

Last enriched3h agov3