36163 matches found
CVE-2026-58598 Windows Backup Service Elevation of Privilege Vulnerability
...
CVE-2026-58598 Windows Backup Service Elevation of Privilege Vulnerability
...
CVE-2026-58598
Technical details are not publicly available in the provided documents. Monitor for updates from vendors and advisories for CVE-2026-58598.
Windows Backup Service Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Backup Engine allows an authorized attacker to elevate privileges locally...
PT-2026-60596
Name of the Vulnerable Software and Affected Versions Windows Backup Engine affected versions not specified Description A race condition occurs in the Windows Backup Engine due to improper synchronization when using a shared resource. This allows an authorized attacker to elevate privileges local...
EUVD-2026-44779
CVE-2026-40952 is a privilege misconfiguration in the Secure Access installer for the Windows client and server prior to version 14.55. Attackers with local access to the client or server can use it to elevate privileges to Administrator when Secure Access is installed in a non-default location...
CVE-2026-40952
CVE-2026-40952 is a privilege misconfiguration in the Secure Access installer for the Windows client and server prior to version 14.55. Attackers with local access to the client or server can use it to elevate privileges to Administrator when Secure Access is installed in a non-default location...
Researcher Drops New Windows Zero-Day PoC Hours After Microsoft Patch Tuesday
Security researcher Chaotic Eclipse aka Nightmare-Eclipse has released a new proof-of-concept PoC exploit called LegacyHive. It has been described as a Windows User Profile Service arbitrary hive load elevation of privileges vulnerability. The Windows User Profile Service, also referred to as...
EUVD-2026-44606
Dell PowerScale OneFS versions 9.5.0.0 through 9.10.1.7, and versions 9.11.0.0 through 9.13.0.2 contains an Improper Privilege Management vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...
Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilities
Microsoft has released its monthly security update for July 2026, which includes 622 vulnerabilities affecting a range of products, including 57 that Microsoft marked as "critical." Microsoft notes that two of the vulnerabilities disclosed this month have been exploited in the wild. CVE-2026-5615...
CVE-2026-50650 .NET Framework Elevation of Privilege Vulnerability
...
CVE-2026-50650
CVE-2026-50650 affects the .NET Framework, where improper control of code generation enables code injection that allows a local, unauthorized attacker to achieve privilege elevation. Root cause: improper handling of dynamic code generation within the framework. Impact per sources: local elevation...
CVE-2026-50650 .NET Framework Elevation of Privilege Vulnerability
...
CVE-2026-47300
Incorrect implementation of authentication algorithm in ASP.NET Core allows an authorized attacker to elevate privileges over a network...
CVE-2026-47303 ASP.NET Core Elevation of Privilege Vulnerability
...
CVE-2026-47303 ASP.NET Core Elevation of Privilege Vulnerability
...
CVE-2026-47303
CVE-2026-47303 affects ASP.NET Core. Authentication bypass by assumed-immutable data enables an authorized attacker to elevate privileges over a network. From the provided metrics, the CVSS v3.1 base score is 8.8 (HIGH) with Network attack vector, Low attack complexity, Privileges Required: LOW, ...
CVE-2026-47301 Configuration Manager Elevation of Privilege Vulnerability
...
CVE-2026-47301
Technical details about CVE-2026-47301 are not publicly available in the provided documents. No affected products, components, versions, or fixes are specified here. Monitor for updates.
CVE-2026-47301 Configuration Manager Elevation of Privilege Vulnerability
...