← Back to BrewedIntel
vulnerabilityhighPrivilege EscalationVulnerability Exploitation

Apr 15, 2026 • Sergiu Gatlan

CISA flags Windows Task Host vulnerability as exploited in attacks

CISA has issued an urgent warning to U.S. government agencies regarding a critical Windows Task Host privilege escalation vulnerability. This flaw allows...

Source
Bleeping Computer
Category
vulnerability
Severity
high

Executive Summary

CISA has issued an urgent warning to U.S. government agencies regarding a critical Windows Task Host privilege escalation vulnerability. This flaw allows attackers to elevate their privileges to SYSTEM level, effectively granting them complete control over affected systems. The vulnerability poses significant risk as it enables threat actors to move laterally within networks and execute commands with the highest privileges. CISA has mandated that federal agencies implement remediation measures immediately. Organizations should prioritize patching this vulnerability and monitor for any suspicious activity involving the Windows Task Host service. Failure to address this flaw could result in complete system compromise.

Summary

CISA warned U.S. government agencies to secure their systems against a Windows Task Host privilege escalation vulnerability that could allow attackers to gain SYSTEM privileges. [...]

Published Analysis

CISA has issued an urgent warning to U.S. government agencies regarding a critical Windows Task Host privilege escalation vulnerability. This flaw allows attackers to elevate their privileges to SYSTEM level, effectively granting them complete control over affected systems. The vulnerability poses significant risk as it enables threat actors to move laterally within networks and execute commands with the highest privileges. CISA has mandated that federal agencies implement remediation measures immediately. Organizations should prioritize patching this vulnerability and monitor for any suspicious activity involving the Windows Task Host service. Failure to address this flaw could result in complete system compromise. CISA warned U.S. government agencies to secure their systems against a Windows Task Host privilege escalation vulnerability that could allow attackers to gain SYSTEM privileges. [...] CISA warned U.S. government agencies to secure their systems against a Windows Task Host privilege escalation vulnerability that could allow attackers to gain SYSTEM privileges. [...]

Read original source