Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability

7 / 10

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.

Visit Original Source

Basic Information

ID MS:CVE-2026-20815

Published Jan 13, 2026 at 08:00

{
    "lastseen": "2026-01-13T19:38:02",
    "description": "Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.\n",
    "published": "2026-01-13T08:00:00",
    "modified": "2026-01-13T08:00:00",
    "type": "mscve",
    "title": "Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability",
    "source": "",
    "references": "",
    "id": "MS:CVE-2026-20815",
    "bulletinFamily": "microsoft",
    "cwe": null,
    "cvelist": [
        "CVE-2026-20815"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 7,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-20815",
    "category_name": "News",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability_MS:CVE-2026-20815

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply