Vulnerability intelligence
CVE-2026-33827
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVSS Score
8.1
High
EPSS — Exploit Probability
0.8%
Riskier than 54% of all CVEs
Exploitation
Not in CISA KEV
No federal exploitation record
Remediation
Patch available
Vendor fix published
4 articles across 4 outlets · first covered Apr 14, 2026 · latest May 13, 2026
Tracked incidents
Coverage timeline
-
Microsoft’s AI Tool MDASH Finds Two Critical Windows Zero Daysthehackernews.com · May 13, 2026
-
Microsoft fixes SharePoint zero day CVE-2026-32201 in Aprilsecurityaffairs.com · Apr 15, 2026
-
Adobe and Microsoft Patch Tuesday sees record fixes amid exploitswww.thezdi.com · Apr 14, 2026
-
Microsoft Patch Tuesday April 2026., (Tue, Apr 14th)isc.sans.edu · Apr 14, 2026