CVE-2026-20805KEVEXPLOITEDPATCHED

microsoft · windows_10_1607

Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.

Description

Affected Products

Vendor	Product	Versions
microsoft	windows_10_1607	< 10.0.14393.8783, < 10.0.14393.8783, < 10.0.17763.8276, < 10.0.17763.8276, < 10.0.19044.6809, < 10.0.19045.6809, < 10.0.22631.6491, < 10.0.26100.7623, < 10.0.26200.7623, < 10.0.14393.8783, < 10.0.17763.8276, < 10.0.20348.4648, < 10.0.25398.2092, < 10.0.26100.7623

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
microsoft	windows_server_2022	cve_cpe	95%
microsoft	windows_10_1809	cve_cpe	95%
microsoft	windows_server_2022_23h2	cve_cpe	95%
microsoft	windows_server_2012	cve_cpe	95%
microsoft	windows_server_2016	cve_cpe	95%

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20805(Vendor Advisory)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-20805(US Government Resource)

Related News (1 articles)

Tier B

JPCERT/CC

Security Alert: Microsoft Releases January 2026 Security Updates

→ No new info (linked only)

CVSS 3.15.5 MEDIUM

VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA KEV✅ Yes

Actively exploited✅ Yes

Patch available

10.0.14393.878310.0.17763.827610.0.19044.680910.0.19045.680910.0.22631.649110.0.26100.762310.0.26200.762310.0.20348.464810.0.25398.2092

CWECWE-200, CWE-94

PublishedJan 13, 2026

Last enriched40d agov2

Trending Score0

Source articles1

Independent1

Info Completeness11/14

Missing: epss, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-40372EXP

ASP.NET Core Elevation of Privilege Vulnerability

Trending: 62

HIGHCVE-2026-39836EXP

Panic in Dial and LookupPort when handling NUL byte on Windows in net

Trending: 59

HIGHCVE-2026-42316EXP

KQL injection via kusto.tables.topics.mapping in kafka-sink-azure-kusto

Trending: 52

HIGHCVE-2026-26164EXP

M365 Copilot Information Disclosure Vulnerability

Trending: 43

HIGHCVE-2026-26129EXP

M365 Copilot Information Disclosure Vulnerability

Trending: 43

Pin to Dashboard

Verification

State: verified

Confidence: 100%

Vulnerability Timeline

CVE Published

Jan 13, 2026

Added to CISA KEV

Jan 13, 2026

Actively Exploited

Jan 14, 2026

Exploit Available

Jan 14, 2026

Patch Available

Jan 14, 2026

Discovered by ZDM

Apr 1, 2026

Updated: cweIds

Apr 1, 2026

Version History

Last enriched 40d ago

v2Tier B40d ago

Updated vendor to Microsoft Corporation, product to Desktop Window Manager, severity to HIGH, and added new CWE-94.

cweIds

via JPCERT/CC

v140d ago

Initial creation

Affected Products

Vendor

Product

Versions

microsoft

windows_10_1607

< 10.0.14393.8783, < 10.0.14393.8783, < 10.0.17763.8276, < 10.0.17763.8276, < 10.0.19044.6809, < 10.0.19045.6809, < 10.0.22631.6491, < 10.0.26100.7623, < 10.0.26200.7623, < 10.0.14393.8783, < 10.0.17763.8276, < 10.0.20348.4648, < 10.0.25398.2092, < 10.0.26100.7623

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor

Product

Source

Confidence

microsoft

windows_server_2022

cve_cpe

95%

microsoft

windows_10_1809

cve_cpe

95%

microsoft

windows_server_2022_23h2

cve_cpe

95%

microsoft

windows_server_2012

cve_cpe

95%

microsoft

windows_server_2016

cve_cpe

95%