Primary

Context

Microsoft Windows Elevation of Privilege Vulnerability in Host Process for Windows Tasks

Vulnerability

Patched

A vulnerability allowing elevation of privileges has been identified in the Host Process for Windows Tasks. This issue arises from improper link resolution before file access, a flaw that authorized attackers can exploit to gain higher privileges locally. The vulnerability affects multiple Windows 11 versions and Windows Server 2025, including Server Core installations.

Impact

Exploitation of this vulnerability could allow an attacker to gain SYSTEM privileges.

Remediation

Users can download the security update for this vulnerability via the Microsoft Update Catalog. For Windows Server 2025, those with Desktop Experience installed should disable a specific task in Task Scheduler as a temporary measure, re-enabling it only after the update has been applied.

Added: Jan 13, 2026, 7:15 PM

Updated: Jan 13, 2026, 7:15 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

2.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

2.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows Elevation of Privilege Vulnerability in Host Process for Windows Tasks

Vulnerability

Impact

Remediation

Affected Products

Microsoft Windows Server 2025

Microsoft Windows 11

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating