581 matches found
CVE-2026-50426
Relative path traversal in DNS Server allows an authorized attacker to execute code over an adjacent network...
CVE-2026-54999
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an unauthorized attacker to execute code over an adjacent network...
CVE-2026-54982
Integer underflow wrap or wraparound in Reliable Multicast Transport Driver RMCAST allows an unauthorized attacker to execute code over an adjacent network...
CVE-2026-42975
Heap-based buffer overflow in Windows Bluetooth Port Driver allows an unauthorized attacker to execute code over an adjacent network...
CVE-2026-47632
Azure Monitor Agent Metrics Extension is affected by CVE-2026-47632 due to improper certificate validation, enabling elevation of privileges for an unauthenticated attacker on an adjacent network. Exploitation details are not provided in the connected documents. CVSSv3.1 base score 8.8 (High): AV...
CVE-2026-54999
The CVE-2026-54999 entry concerns a race condition in Windows TCP/IP where concurrent access to a shared resource allows an unauthorized attacker on an adjacent network to execute code. Documented impact is remote code execution with high severity (CVSSv3.1: AV=A, AC=L, PR=N, UI=N, S=U, C=H, I=H,...
CVE-2026-54982
CVE-2026-54982 affects the Windows Reliable Multicast Transport Driver (RMCAST). The issue is an integer underflow in RMCAST that can allow an adjacent-network attacker to execute code on the vulnerable host (remote code execution). CVSS v3.1 indicates high impact with adjacent network exploitati...
Windows TCP/IP Remote Code Execution Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an unauthorized attacker to execute code over an adjacent network...
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability
Integer underflow wrap or wraparound in Reliable Multicast Transport Driver RMCAST allows an unauthorized attacker to execute code over an adjacent network...
Windows Bluetooth Port Driver Remote Code Execution
Heap-based buffer overflow in Windows Bluetooth Port Driver allows an unauthorized attacker to execute code over an adjacent network...
DHCP Server Service Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows DHCP Server allows an unauthorized attacker to execute code over an adjacent network...
Windows DHCP Client Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows DHCP Server allows an authorized attacker to elevate privileges over an adjacent network...
Azure Monitor Agent Metrics Extension Elevation of Privilege Vulnerability
Improper certificate validation in Azure Monitor Agent allows an unauthorized attacker to elevate privileges over an adjacent network...
PT-2026-58459
Name of the Vulnerable Software and Affected Versions Windows Hyper-V affected versions not specified Description A buffer over-read in Windows Hyper-V allows an authorized attacker to cause a denial of service over an adjacent network, potentially leading to a system crash. Recommendations At th...
PT-2026-58503
Name of the Vulnerable Software and Affected Versions Windows DHCP Server affected versions not specified Description A heap-based buffer overflow exists in Windows DHCP Server. This flaw allows an authorized attacker located on an adjacent network to elevate their privileges. A heap-based buffer...
PT-2026-58599
Name of the Vulnerable Software and Affected Versions Windows Network Address Translation NAT affected versions not specified Description An origin validation error allows an unauthorized attacker to perform spoofing over an adjacent network, which can affect the system. Recommendations At the...
CVE-2026-47692
A flaw was found in Envoy. The PROXY Protocol v2 header generator can emit data beyond the maximum allowed length, leading to a mismatch between the actual bytes sent and the length specified in the header. An attacker on an adjacent network could exploit this to smuggle bytes into upstream...
CVE-2026-53257
A flaw was found in the Linux kernel. An issue within the mac80211 Wi-Fi subsystem, specifically related to the enforcement of High Efficiency HE and Extremely High Throughput EHT capabilities and operations, could lead to a system crash. This vulnerability arises when HE/EHT capabilities are set...
CVE-2026-54100
A flaw was found in the Windows Machine Config Operator WMCO for Red Hat OpenShift Container Platform. WMCO establishes SSH connections to Windows worker nodes without verifying the remote server host key. An adjacent-network attacker who can intercept or redirect WMCO's SSH session can capture...
CVE-2026-54100
CVE-2026-54100 affects the Windows Machine Config Operator (WMCO) used with Red Hat OpenShift Container Platform. The flaw is that WMCO establishes SSH connections to Windows worker nodes without verifying the remote host key, enabling an adjacent-network attacker who can intercept or redirect WM...