CVE-2026-27925: CWE-416: Use After Free in Microsoft Windows 10 Version 1607
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to disclose information over an adjacent network.
AI Analysis
Technical Summary
This vulnerability involves a use-after-free condition in the Windows UPnP Device Host service on Windows 10 Version 1607 (build 10.0.14393.0). An attacker without privileges and without user interaction, but located on an adjacent network, can exploit this flaw to disclose information. The vulnerability is tracked as CWE-416. Microsoft has published an official security update to address this issue.
Potential Impact
Successful exploitation can lead to unauthorized information disclosure from the affected system. The vulnerability does not allow for privilege escalation, denial of service, or integrity compromise according to the CVSS vector. No known active exploits have been reported.
Mitigation Recommendations
An official fix from Microsoft is available and should be applied to affected systems running Windows 10 Version 1607. Administrators should consult the Microsoft Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27925 for detailed update instructions and ensure patches are deployed promptly.
CVE-2026-27925: CWE-416: Use After Free in Microsoft Windows 10 Version 1607
Description
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to disclose information over an adjacent network.
CVSS v3.1
Score 6.5medium
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves a use-after-free condition in the Windows UPnP Device Host service on Windows 10 Version 1607 (build 10.0.14393.0). An attacker without privileges and without user interaction, but located on an adjacent network, can exploit this flaw to disclose information. The vulnerability is tracked as CWE-416. Microsoft has published an official security update to address this issue.
Potential Impact
Successful exploitation can lead to unauthorized information disclosure from the affected system. The vulnerability does not allow for privilege escalation, denial of service, or integrity compromise according to the CVSS vector. No known active exploits have been reported.
Mitigation Recommendations
An official fix from Microsoft is available and should be applied to affected systems running Windows 10 Version 1607. Administrators should consult the Microsoft Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27925 for detailed update instructions and ensure patches are deployed promptly.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- microsoft
- Date Reserved
- 2026-02-24T21:35:49.688Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- official-fix
- Vendor Advisory Urls
- [{"url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27925","vendor":"Microsoft"}]
Threat ID: 69de7a2482d89c981fd6b9fc
Added to database: 4/14/2026, 5:32:20 PM
Last enriched: 5/19/2026, 10:39:07 AM
Last updated: 5/28/2026, 9:26:43 AM
Views: 53
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.