CVE-2026-47635 Microsoft Outlook and Word Remote Code Execution Vulnerability

...

CVE-2026-47635

CVE-2026-47635 concerns a type-confusion vulnerability in Microsoft Office components (notably Outlook and Word) that allows an unauthenticated/user-local attacker to execute code locally. The underlying issue is a resource access type mismatch that can lead to remote attack surfaces when process...

CVE-2026-47298 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2026-47298

CVE-2026-47298 constrains Microsoft Office SharePoint, where improper authorization allows an attacker with network access to execute code on vulnerable systems. The vulnerability is described as a remote code execution issue with a high impact on confidentiality, integrity, and availability (CVE...

CVE-2026-32193 Azure Kubernetes Service (AKS) Remote Code Execution Vulnerability

...

CVE-2026-47298 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2026-32193 Azure Kubernetes Service (AKS) Remote Code Execution Vulnerability

...

CVE-2026-32193

CVE-2026-32193 targets Microsoft Azure Kubernetes Service with a path-traversal flaw that permits an authorized attacker to run code locally. The NVD entry describes it as a restricted-pathname limitation issue with CVSS v3.1 base score 8.8 (HIGH), attack vector LOCAL, required privileges LOW, no...

CVE-2026-47292 Visual Studio Code MSSQL Extension Remote Code Execution Vulnerability

...

CVE-2026-47291

The CVE-2026-47291 entry describes an integer overflow/ wraparound in Windows HTTP.sys that enables a remote attacker to execute code over the network. Affected software component: Windows HTTP.sys. Root cause: integer overflow/wraparound in the HTTP.sys processing path. Impact: unauthenticated n...

CVE-2026-47292 Visual Studio Code MSSQL Extension Remote Code Execution Vulnerability

...

CVE-2026-47291 HTTP.sys Remote Code Execution Vulnerability

...

CVE-2026-47291 HTTP.sys Remote Code Execution Vulnerability

...

CVE-2026-47288 Windows Kerberos Key Distribution Center (KDC) Remote Code Execution

...

CVE-2026-47289 Remote Desktop Client Remote Code Execution Vulnerability

...

CVE-2026-47288 Windows Kerberos Key Distribution Center (KDC) Remote Code Execution

...

CVE-2026-47289 Remote Desktop Client Remote Code Execution Vulnerability

...

CVE-2026-47289

CVE-2026-47289 is a heap-based buffer overflow in the Remote Desktop Client that enables remote code execution over a network. The vulnerability is exploitable remotely (attack vector: NETWORK) with low complexity and requires user interaction, yielding a high impact on confidentiality, integrity...

CVE-2026-47288

CVE-2026-47288 affects Windows Kerberos Key Distribution Center (KDC). The vulnerability is an integer overflow/wraparound in the Kerberos code, enabling an authorized attacker on an adjacent network to execute code. The CVE has a CVSSv3.1 score of 7.1 ( HIGH ) with attack vector Adjacent, high i...

CVE-2026-45657

CVE-2026-45657 is a use-after-free in the Windows Kernel that enables a remote attacker to execute code over a network without user interaction. The formal CVSSv3.1 base score is 9.8 (CRITICAL), with network attack vector, low attack complexity, no privileges required, and high impact to confiden...