THE Known Exploited Vulnerabilities (KEV) Catalog entry for CVE-2026-32202 identifies it as a Microsoft Windows Protection Mechanism Failure Vulnerability, described as a Windows Shell protection mechanism failure that could allow an unauthorized attacker to spoof over a network. The catalog lists Microsoft as the vendor/project and Windows as the affected product. It notes that the vulnerability is Unknown in terms of being used in ransomware campaigns.
Action recommended is to apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. Date Added is 28 April 2026 and Due Date is 12 May 2026. Additional Notes provide links to the Microsoft Update Guide and the NVD vulnerability page for CVE-2026-32202.