CVE-2026-33843 Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability

...

CVE-2026-40381 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

CVE-2026-40381 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

CVE-2026-35436 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability

...

CVE-2026-40402

The CVE-2026-40402 entry describes a use-after-free in Windows Hyper-V that enables local privilege escalation by an unauthenticated attacker. The vulnerability affects Hyper-V components and, per multiple connected sources, has been addressed by May 2026 security updates (e.g., KB5087420/KB50874...

CVE-2026-40369

CVE-2026-40369 is a Windows Kernel elevation of privilege vulnerability described as an untrusted pointer dereference that could allow an authorized, local attacker to elevate privileges. Connected documents confirm this is affecting Windows kernel components across Windows 11 (versions in 25H2/2...

CVE-2026-34340 Windows Projected File System Elevation of Privilege Vulnerability

...

CVE-2026-34338 Windows Telephony Service Elevation of Privilege Vulnerability

...

CVE-2026-32170 Windows Rich Text Edit Elevation of Privilege Vulnerability

...

CVE-2026-40419 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability

...

CVE-2026-40417 Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability

...

CVE-2026-40410 Windows SMB Client Elevation of Privilege Vulnerability

...

CVE-2026-40407

CVE-2026-40407 describes a heap-based buffer overflow in the Windows Common Log File System (CLFS) Driver that permits an authorized, local attacker to elevate privileges. The vulnerability impact is local privilege escalation with a CVSS v3.1 base score of 7.8 (HIGH) and impact to confidentialit...

CVE-2026-40407 Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

CVE-2026-40399 Windows TCP/IP Elevation of Privilege Vulnerability

...

CVE-2026-35433 .NET Elevation of Privilege Vulnerability

...

CVE-2026-35420

CVE-2026-35420 is described in the provided sources as a heap-based buffer overflow in the Windows kernel that enables a locally authenticated attacker to achieve privilege escalation. The CVE entry itself cites an elevation of privileges without detailing exploit vectors beyond local access, and...

CVE-2026-35417 Windows Win32k Elevation of Privilege Vulnerability

...

CVE-2026-35416 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

CVE-2026-34347 Windows Win32k Elevation of Privilege Vulnerability

...