CVE-2026-20805

Published Jan 13, 2026

Last updated 2 months ago

Exploit knownCVSS medium 5.5
Business logic
Database
Desktop Windows Manager

Overview

Description
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.
Source
secure@microsoft.com
NVD status
Analyzed
Products
windows_10_1607, windows_10_1809, windows_10_21h2, windows_10_22h2, windows_11_23h2, windows_11_24h2, windows_11_25h2, windows_server_2012, windows_server_2016, windows_server_2019, windows_server_2022, windows_server_2022_23h2, windows_server_2025

Risk scores

CVSS 3.1

Type
Secondary
Base score
5.5
Impact score
3.6
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Severity
MEDIUM

Known exploits

Data from CISA

Vulnerability name
Microsoft Windows Information Disclosure Vulnerability
Exploit added on
Jan 13, 2026
Exploit action due
Feb 3, 2026
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weaknesses

secure@microsoft.com
CWE-200

Social media

Hype score
Not currently trending

  1. CVE-2025-21333/21334 + CVE-2026-20805: Hyper-V zero-days → SYSTEM access. DWM leaks memory to fuel exploit chains. 157 CVEs, 8 zero-days, one Patch Tuesday. CISA deadline expired today. Your critical servers run Hyper-V. Assume compromised if unpatched. Sweet dreams.

    @CisoRaging77913

    4 Feb 2026

    57 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Top 5 Trending CVEs: 1 - CVE-2026-21509 2 - CVE-2026-20805 3 - CVE-2024-3094 4 - CVE-2024-1234 5 - CVE-2010-5139 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    3 Feb 2026

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Microsoft、Windowsの定例アップデートで3件のゼロデイ 脆弱性を修正(CVE-2026-20805/21265/CVE-2023-31096) https://t.co/pQkjWZas36 #セキュリティ対策Lab #セキュリティ #Security

    @securityLab_jp

    14 Jan 2026

    221 Impressions

    1 Retweet

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🚨 Microsoft January 2026 Patch Tuesday Fixes 115 Flaws, Including an Actively Exploited Zero-Day Microsoft’s January 2026 Patch Tuesday ships 115 fixes (8 Critical), including three zero-days: CVE-2026-20805 (DWM info leak) confirmed exploited in the wild, CVE-2023-31096 (Ag

    @ThreatSynop

    14 Jan 2026

    80 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Microsoft patches critical Desktop Window Manager flaws, incl. zero-day CVE-2026-20805 and EoP CVE-2025-55681, letting local users read memory and gain SYSTEM on Windows 10-11. Apply Jan 13 updates. #Windows https://t.co/DsbDcq5TDM

    @threatcluster

    14 Jan 2026

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 🚨 Microsoft January 2026 Patch Tuesday Fixes 114 Flaws, Including 3 Zero-Days Microsoft’s January 2026 Patch Tuesday addresses 114 vulnerabilities, including three zero-days (CVE-2026-20805 DWM info-disclosure, CVE-2026-21265 Windows Digital Media EoP, and CVE-2023-31096) wi

    @ThreatSynop

    14 Jan 2026

    64 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the user-defined function component.CVE-2025-13687
  2. IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the wrapped command component.CVE-2025-13688
  3. IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the job subroutine component.CVE-2025-13686
  4. Sourcecodester Logistic Hub Parcel's Management System v1.0 is vulnerable to SQL Injection in /manage_parcel_type.php.CVE-2026-26891
  5. Sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/manage_category.php.CVE-2026-26889

References

Sources include official advisories and independent security research.