Microsoft · Windows Connected Devices Platform Service · CVE-2026-21234
**Name of the Vulnerable Software and Affected Versions**
Windows Connected Devices Platform Service (affected versions not specified)
**Description**
A flaw exists in the Windows Connected Devices Platform Service that allows a local attacker to gain elevated privileges. This occurs due to a race condition during concurrent execution using a shared resource with improper synchronization. The issue allows an authorized attacker to elevate privileges locally.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.