CVE-2026-20816

Name of the Vulnerable Software and Affected Versions Windows Installer (affected versions not specified)

Description A time-of-check time-of-use (TOCTOU) race condition exists in Windows Installer. This condition can be exploited by an authorized attacker to gain elevated privileges locally. The issue involves a timing flaw where a check is performed on a resource, and then the resource is used, leaving a window for manipulation between the check and the use.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.