Vulnerability Details CVE-2026-20876
Heap-based buffer overflow in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.9%
CVSS Severity
CVSS v3 Score 6.7
Products affected by CVE-2026-20876
-
cpe:2.3:o:microsoft:windows_11_23h2:-
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22621.2715
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22621.4169
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22621.4751
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22621.5335
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2428
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2506
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2715
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2792
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.2861
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3007
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3085
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3155
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3235
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3296
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3374
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3447
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3527
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3593
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3672
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3737
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3810
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3880
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.3958
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4037
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4112
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4169
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4249
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4317
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4391
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4460
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4541
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4602
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4751
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.4890
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5039
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5189
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5335
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5472
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5624
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5768
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5900
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.5909
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.6060
-
cpe:2.3:o:microsoft:windows_11_23h2:10.0.22631.6199
-
cpe:2.3:o:microsoft:windows_11_24h2:-
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.1742
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.2033
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.2161
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.2314
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.2454
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.2605
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.2894
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.3107
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.3194
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.3403
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.3476
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.3775
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.3981
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.4061
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.4270
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.4349
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.4652
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.4851
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.4946
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.6508
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.6563
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.6584
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.6899
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.7092
-
cpe:2.3:o:microsoft:windows_11_24h2:10.0.26100.7171
-
cpe:2.3:o:microsoft:windows_11_25h2:-
-
cpe:2.3:o:microsoft:windows_11_25h2:10.0.26200.6899
-
cpe:2.3:o:microsoft:windows_11_25h2:10.0.26200.7092
-
cpe:2.3:o:microsoft:windows_11_25h2:10.0.26200.7171
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:-
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1009
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1085
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1128
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1189
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1251
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1308
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1369
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1425
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1486
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1551
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1611
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1665
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1668
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1732
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1791
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1840
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1849
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1913
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1916
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.1965
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.521
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.531
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.584
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.643
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.709
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.763
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.830
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.887
-
cpe:2.3:o:microsoft:windows_server_2022_23h2:10.0.25398.950
-
cpe:2.3:o:microsoft:windows_server_2025:-
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.2033
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.2314
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.2605
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.2894
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.3107
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.3194
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.3403
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.3476
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.3775
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.3781
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.3981
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4061
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4066
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4270
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4349
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4652
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4656
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4851
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4946
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.6508
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.6563
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.6584
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.6899
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.6905
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.7092
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.7171
-
cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.7623