Jun Jie

**Name of the Vulnerable Software and Affected Versions** Windows WalletService (versões afetadas não especificadas) **Description** Um problema de use after free no Windows WalletService permite que um invasor autorizado eleve privilégios localmente. Use after free é uma condição onde um programa continua a usar um ponteiro após ele ter sido liberado, o que pode levar à corrupção de memória. **Recommendations** No momento, não há informações sobre uma versão mais recente que contenha a correção para esta vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Windows Connected Devices Platform Service (affected versions not specified) **Description** A flaw exists in the Windows Connected Devices Platform Service that allows a local attacker to gain elevated privileges. This occurs due to a race condition during concurrent execution using a shared resource with improper synchronization. The issue allows an authorized attacker to elevate privileges locally. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows versions prior to 2026-20853 **Description** A race condition exists in Windows WalletService due to concurrent execution using a shared resource with improper synchronization. This allows an unauthorized attacker to elevate privileges locally. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.