Vulnerability Identifier

CVE-2026-20805

2026-01-13

Severity Assessment

5.5

MEDIUM

CVSS v3.x Score

CISA KEV Active Alert

Date Added

01 Jan 1970

Due Date

N/A

Required Action

Apply updates per vendor instructions.

Clinical Analysis (Description)

Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.

Vector Sequencing

Attack Parameters

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Impact Consequences

Technical Impact

Unchanged

Scope

High

Confidentiality

None

Integrity

None

Availability

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Weakness Classification

CWE-CWE-200

View CWE Details ↗

Affected Population

Affected Configurations

Total: 195 detected entries

Software List Scrollable

windows_server_2019

Vendor: microsoft • v10.0.17763.2029

windows_10_22h2

Vendor: microsoft • v10.0.19045.2728

windows_server_2022

Vendor: microsoft • v10.0.20348.887

windows_server_2019

Vendor: microsoft • v10.0.17763.7434

windows_server_2019

Vendor: microsoft • v10.0.17763.2061

windows_server_2019

Vendor: microsoft • v10.0.17763.3887

windows_server_2022

Vendor: microsoft • v10.0.20348.1547

windows_10_22h2

Vendor: microsoft • v10.0.19045.2788

windows_server_2022

Vendor: microsoft • v10.0.20348.2227

windows_server_2022

Vendor: microsoft • v10.0.20348.770

windows_server_2022

Vendor: microsoft • v10.0.20348.4161

windows_server_2022

Vendor: microsoft • v10.0.20348.350

windows_server_2022

Vendor: microsoft • v10.0.20348.617

windows_server_2019

Vendor: microsoft • v10.0.17763.7919

windows_server_2022

Vendor: microsoft • v10.0.20348.1726

windows_10_22h2

Vendor: microsoft • v10.0.19045.3930

windows_10_22h2

Vendor: microsoft • v10.0.19045.5011

windows_server_2019

Vendor: microsoft • v10.0.17763.3287

windows_server_2022

Vendor: microsoft • v10.0.20348.469

windows_10_22h2

Vendor: microsoft • v10.0.19045.5371

windows_server_2022

Vendor: microsoft • v10.0.20348.1607

windows_server_2019

Vendor: microsoft • v10.0.17763.4974

windows_10_22h2

Vendor: microsoft • v10.0.19045.4046

windows_server_2022

Vendor: microsoft • v10.0.20348.405

windows_server_2019

Vendor: microsoft • v10.0.17763.4737

windows_server_2022

Vendor: microsoft • v10.0.20348.709

windows_10_22h2

Vendor: microsoft • v10.0.19045.4651

windows_server_2022

Vendor: microsoft • v10.0.20348.2655

windows_server_2022

Vendor: microsoft • v10.0.20348.2522

windows_10_22h2

Vendor: microsoft • v10.0.19045.4291

windows_server_2022

Vendor: microsoft • v10.0.20348.3328

windows_10_22h2

Vendor: microsoft • v10.0.19045.4412

windows_server_2019

Vendor: microsoft • v10.0.17763.4131

windows_server_2019

Vendor: microsoft • v10.0.17763.6893

windows_server_2019

Vendor: microsoft • v10.0.17763.8027

windows_server_2022

Vendor: microsoft • v10.0.20348.2849

windows_server_2022

Vendor: microsoft • v10.0.20348.3932

windows_10_22h2

Vendor: microsoft • v10.0.19045.3803

windows_10_22h2

Vendor: microsoft • v10.0.19045.3516

windows_server_2022

Vendor: microsoft • v10.0.20348.2031

windows_server_2022

Vendor: microsoft • v10.0.20348.524

windows_server_2022

Vendor: microsoft • v10.0.20348.2201

windows_server_2022

Vendor: microsoft • v10.0.20348.1668

windows_10_22h2

Vendor: microsoft • v10.0.19045.5737

windows_server_2022

Vendor: microsoft • v10.0.20348.2333

windows_server_2022

Vendor: microsoft • v10.0.20348.768

windows_10_22h2

Vendor: microsoft • v10.0.19045.2673

windows_10_22h2

Vendor: microsoft • v10.0.19045.5608

windows_server_2019

Vendor: microsoft • v10.0.17763.6414

windows_server_2019

Vendor: microsoft • v10.0.17763.2452

windows_server_2019

Vendor: microsoft • v10.0.17763.7792

windows_server_2019

Vendor: microsoft • v10.0.17763.7783

windows_server_2019

Vendor: microsoft • v10.0.17763.3046

windows_server_2022

Vendor: microsoft • v10.0.20348.473

windows_server_2019

Vendor: microsoft • v10.0.17763.6293

windows_server_2012

Vendor: microsoft • vr2

windows_10_22h2

Vendor: microsoft • v10.0.19045.6575

windows_server_2022

Vendor: microsoft • v10.0.20348.587

windows_server_2022

Vendor: microsoft • v10.0.20348.2402

windows_server_2022

Vendor: microsoft • v10.0.20348.1602

windows_server_2022

Vendor: microsoft • v10.0.20348.1311

windows_server_2022

Vendor: microsoft • v10.0.20348.261

windows_10_22h2

Vendor: microsoft • v10.0.19041.3920

windows_10_22h2

Vendor: microsoft • v10.0.19045.2965

windows_10_22h2

Vendor: microsoft • v10.0.19045.2604

windows_server_2012

Vendor: microsoft • v-

windows_10_22h2

Vendor: microsoft • v10.0.19045.2486

windows_10_22h2

Vendor: microsoft • v10.0.19045.2846

windows_server_2019

Vendor: microsoft • v10.0.17763.6532

windows_server_2022

Vendor: microsoft • v10.0.20348.1850

windows_server_2022

Vendor: microsoft • v10.0.20348.3630

windows_server_2019

Vendor: microsoft • v10.0.17763.5936

windows_server_2022

Vendor: microsoft • v10.0.20348.1724

windows_server_2022

Vendor: microsoft • v10.0.20348.2966

windows_server_2019

Vendor: microsoft • v10.0.17763.5458

windows_server_2022

Vendor: microsoft • v10.0.20348.3148

windows_server_2019

Vendor: microsoft • v10.0.17763.2803

windows_10_22h2

Vendor: microsoft • v10.0.19045.2546

windows_server_2019

Vendor: microsoft • v10.0.17763.2565

windows_server_2022

Vendor: microsoft • v10.0.20348.4294

windows_server_2022

Vendor: microsoft • v10.0.20348.859

windows_10_22h2

Vendor: microsoft • v10.0.19045.6332

windows_server_2019

Vendor: microsoft • v10.0.17763.5576

windows_10_22h2

Vendor: microsoft • v10.0.19045.5854

windows_server_2019

Vendor: microsoft • v10.0.17763.7136

windows_10_22h2

Vendor: microsoft • v10.0.19045.3271

windows_server_2022

Vendor: microsoft • v10.0.20348.1070

windows_server_2022

Vendor: microsoft • v10.0.20348.1249

windows_server_2022

Vendor: microsoft • v10.0.20348.1251

windows_server_2022

Vendor: microsoft • v10.0.20348.4297

windows_server_2022

Vendor: microsoft • v10.0.20348.1366

windows_10_22h2

Vendor: microsoft • v10.0.19045.4894

windows_10_22h2

Vendor: microsoft • v10.0.19045.4170

windows_server_2019

Vendor: microsoft • v10.0.17763.2183

windows_server_2022

Vendor: microsoft • v10.0.20348.707

windows_10_22h2

Vendor: microsoft • v10.0.19045.2913

windows_server_2022

Vendor: microsoft • v10.0.20348.2762

windows_server_2019

Vendor: microsoft • v10.0.17763.2928

windows_10_22h2

Vendor: microsoft • v10.0.19045.3086

windows_server_2019

Vendor: microsoft • v10.0.17763.6189

windows_server_2019

Vendor: microsoft • v10.0.17763.6054

windows_10_22h2

Vendor: microsoft • v10.0.19045.6321

windows_server_2019

Vendor: microsoft • v10.0.17763.7009

windows_server_2022

Vendor: microsoft • v10.0.20348.1903

windows_10_22h2

Vendor: microsoft • v10.0.19045.2364

windows_server_2019

Vendor: microsoft • v10.0.17763.2114

windows_server_2022

Vendor: microsoft • v10.0.20348.1787

windows_server_2022

Vendor: microsoft • v10.0.20348.803

windows_server_2022

Vendor: microsoft • v10.0.20348.2700

windows_server_2022

Vendor: microsoft • v10.0.20348.4052

windows_server_2022

Vendor: microsoft • v10.0.20348.558

windows_10_22h2

Vendor: microsoft • v10.0.19045.2130

windows_server_2022

Vendor: microsoft • v10.0.20348.3207

windows_server_2022

Vendor: microsoft • v10.0.20348.3745

windows_server_2022

Vendor: microsoft • v10.0.20348.1131

windows_server_2022

Vendor: microsoft • v10.0.20348.230

windows_server_2022

Vendor: microsoft • v10.0.20348.4171

windows_server_2019

Vendor: microsoft • v10.0.17763.5820

windows_server_2022

Vendor: microsoft • v10.0.20348.3807

windows_server_2022

Vendor: microsoft • v10.0.20348.1129

windows_10_22h2

Vendor: microsoft • v10.0.19045.3208

windows_server_2022

Vendor: microsoft • v10.0.20348.4106

windows_server_2019

Vendor: microsoft • v10.0.17763.2237

windows_server_2022

Vendor: microsoft • v10.0.20348.380

windows_server_2022

Vendor: microsoft • v10.0.20348.407

windows_server_2022

Vendor: microsoft • v10.0.20348.681

windows_server_2022

Vendor: microsoft • v10.0.20348.2340

windows_server_2022

Vendor: microsoft • v10.0.20348.1906

windows_server_2022

Vendor: microsoft • v10.0.20348.3692

windows_server_2022

Vendor: microsoft • v10.0.20348.946

windows_server_2019

Vendor: microsoft • v10.0.17763.4499

windows_server_2022

Vendor: microsoft • v10.0.20348.2461

windows_server_2019

Vendor: microsoft • v10.0.17763.5122

windows_server_2019

Vendor: microsoft • v10.0.17763.7314

windows_server_2022

Vendor: microsoft • v10.0.20348.2159

windows_server_2019

Vendor: microsoft • v10.0.17763.7678

windows_server_2019

Vendor: microsoft • v10.0.17763.4252

windows_10_22h2

Vendor: microsoft • v10.0.19045.5247

windows_server_2022

Vendor: microsoft • v10.0.20348.1540

windows_10_22h2

Vendor: microsoft • v10.0.19044.2486

windows_10_22h2

Vendor: microsoft • v10.0.19045.6216

windows_server_2019

Vendor: microsoft • v10.0.17763.3406

windows_server_2022

Vendor: microsoft • v10.0.20348.4405

windows_server_2022

Vendor: microsoft • v10.0.20348.2582

windows_server_2019

Vendor: microsoft • v10.0.17763.5329

windows_server_2019

Vendor: microsoft • v10.0.17763.1999

windows_server_2022

Vendor: microsoft • v10.0.20348.643

windows_10_22h2

Vendor: microsoft • v10.0.19045.6456

windows_server_2019

Vendor: microsoft • v10.0.17763.7922

windows_server_2019

Vendor: microsoft • v10.0.17763.3770

windows_10_22h2

Vendor: microsoft • v10.0.19045.3693

windows_server_2022

Vendor: microsoft • v10.0.20348.2113

windows_server_2019

Vendor: microsoft • v10.0.17763.6659

windows_10_22h2

Vendor: microsoft • v10.0.19045.5965

windows_10_22h2

Vendor: microsoft • v10.0.19045.5131

windows_server_2022

Vendor: microsoft • v10.0.20348.288

windows_server_2022

Vendor: microsoft • v10.0.20348.3270

windows_server_2022

Vendor: microsoft • v10.0.20348.320

windows_10_22h2

Vendor: microsoft • v10.0.19045.6093

windows_server_2022

Vendor: microsoft • v10.0.20348.1194

windows_10_22h2

Vendor: microsoft • v10.0.19044.3324

windows_server_2019

Vendor: microsoft • v10.0.17763.3532

windows_10_22h2

Vendor: microsoft • v10.0.19045.3570

windows_10_22h2

Vendor: microsoft • v10.0.19045.5487

windows_server_2019

Vendor: microsoft • v10.0.17763.5696

windows_server_2019

Vendor: microsoft • v10.0.17763.7558

windows_server_2022

Vendor: microsoft • v10.0.20348.1970

windows_server_2022

Vendor: microsoft • v10.0.20348.4346

windows_10_22h2

Vendor: microsoft • v10.0.19045.3393

windows_server_2022

Vendor: microsoft • v10.0.20348.2322

windows_server_2022

Vendor: microsoft • v10.0.20348.825

windows_server_2019

Vendor: microsoft • v10.0.17763.3650

windows_server_2022

Vendor: microsoft • v10.0.20348.3453

windows_server_2019

Vendor: microsoft • v10.0.17763.4645

windows_server_2019

Vendor: microsoft • v10.0.17763.2366

windows_server_2019

Vendor: microsoft • v10.0.17763.4851

windows_10_22h2

Vendor: microsoft • v10.0.19045.3324

windows_10_22h2

Vendor: microsoft • v10.0.19045.2251

windows_10_22h2

Vendor: microsoft • v10.0.19045.3448

windows_10_22h2

Vendor: microsoft • v10.0.19042.2486

windows_server_2022

Vendor: microsoft • v10.0.20348.1006

windows_server_2022

Vendor: microsoft • v10.0.20348.2458

windows_server_2022

Vendor: microsoft • v10.0.20348.1368

windows_server_2022

Vendor: microsoft • v10.0.20348.1487

windows_server_2022

Vendor: microsoft • v10.0.20348.3989

windows_10_22h2

Vendor: microsoft • v10.0.19045.2311

windows_server_2022

Vendor: microsoft • v10.0.20348.740

windows_server_2019

Vendor: microsoft • v10.0.17763.2300

windows_10_22h2

Vendor: microsoft • v10.0.19045.3087

windows_10_22h2

Vendor: microsoft • v10.0.19045.3031

windows_server_2019

Vendor: microsoft • v10.0.17763.3165

windows_10_22h2

Vendor: microsoft • v10.0.19045.3155

windows_server_2019

Vendor: microsoft • v10.0.17763.4010

windows_10_22h2

Vendor: microsoft • v10.0.19045.4780

windows_server_2022

Vendor: microsoft • v10.0.20348.502

Timeline

Time Line

PUBLICATION

13 Jan 2026

MODIFICATION

14 Jan 2026

Impact Statistics

Key Metrics

CVSS Score

5.5

MEDIUM

Products

195

Affected

Articles

Published

Active Exploitation Confirmed

Remediation Protocol

Immediate Action Plan

1. Inventory

Identify all affected systems in your infrastructure.

2. Assessment

Assess exposure and criticality for your organization.

3. Mitigation

Apply patches or available workarounds.

4. Verification

Test and confirm effectiveness of applied measures.

⚠️ MAXIMUM PRIORITY - Immediate action required

Sources & Bibliography

NIST NVD MITRE CVE External Reference ↗ External Reference ↗

CVE Vulnerabilities

Posts & Pages

CVE-2026-20805

CISA KEV Active Alert

Attack Parameters

Technical Impact

CWE-CWE-200

Affected Configurations

Time Line

Key Metrics

Recommended Solution

Related News Articles

Microsoft Windows Security Update Advisory: Multiple Vulnerabilities Identified

Immediate Action Plan

1. Inventory

2. Assessment

3. Mitigation

4. Verification