CVE Catalog

CVE-2026-42969

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.13%

32th percentile - higher than 32% of all known CVEs

Summary

Use of uninitialized resource in Windows Push Notifications allows an authorized attacker to disclose information locally.

Risk Assessment

An attacker with appropriate permissions may gain access to sensitive data, potentially leading to a breach of user privacy.

Recommendation

It is recommended to update the operating system to the latest version to mitigate the risks associated with this vulnerability.

Original NVD description (English source)

Use of uninitialized resource in Windows Push Notifications allows an authorized attacker to disclose information locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS