3194 matches found
Spring MVC Framework - Local File Inclusion
Spring MVC Framework versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported are vulnerable to local file inclusion because they allow applications to configure Spring MVC to serve static resources e.g. CSS, JS, images. A malicious user can send a request using a...
CVE-2026-56186 Windows Secure Channel Information Disclosure Vulnerability
...
CVE-2026-55139
Technical details for CVE-2026-55139 are not publicly available in the provided documents. Available sources mention exposure in Microsoft Office but do not specify affected products, versions, root cause, or remediation. Monitor for official updates.
CVE-2026-55042 Microsoft Office Information Disclosure Vulnerability
...
CVE-2026-55027 Microsoft Office Information Disclosure Vulnerability
...
CVE-2026-48580 Microsoft Excel Information Disclosure Vulnerability
...
CVE-2026-50690 Windows SMB Information Disclosure Vulnerability
...
CVE-2026-50657 Microsoft Defender for Endpoint for Mac Information Disclosure Vulnerability
...
CVE-2026-50496 Windows Network Policy Server SNMP Information Disclosure Vulnerability
...
CVE-2026-50470
CVE-2026-50470 describes an out-of-bounds read in Windows Network Policy Server SNMP that could let an unauthenticated attacker disclose information over the network. The vulnerability affects the NPS SNMP handling and has a CVSS v3.1 base score of 7.5 (High) with network attack vector, low attac...
CVE-2026-50456
CVE-2026-50456 is a Windows File Explorer information disclosure vulnerability. A local attacker with low privileges and no user interaction can access sensitive information due to the underlying issue in Windows File Explorer. The CVSS.3.1 score is 5.5 (Medium), with attack vector Local, impact...
CVE-2026-50389 Windows File Explorer Information Disclosure Vulnerability
...
CVE-2026-50352 Windows Cryptographic Services Information Disclosure Vulnerability
...
CVE-2026-50334 Windows Push Notification Information Disclosure Vulnerability
...
CVE-2026-49180 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability
...
CVE-2026-40422 Windows File Explorer Information Disclosure Vulnerability
...
CVE-2026-47282 GitHub Copilot and Visual Studio Code Information Disclosure Vulnerability
...
CVE-2026-58291
CVE-2026-58291 affects Microsoft Edge (Chromium-based). The description indicates an information disclosure vulnerability where an attacker can disclose data by operating on a resource after expiration or release. CVSSv3.1 metrics cite Network attack, high complexity, no privileges required, user...
CVE-2026-58300 Microsoft Edge for Android Information Disclosure Vulnerability
...
CVE-2026-58297
CVE-2026-58297 affects Microsoft Edge for Android. The issue is an information disclosure that allows an unauthorized attacker to exfiltrate private personal information over a network. According to the sources, the CVSS v3.1 base score is 7.1 (HIGH) with network attack vector, no privileges requ...