36174 matches found
CVE-2026-58534 Windows Input Method Editor (IME) Elevation of Privilege Vulnerability
...
CVE-2026-58531
CVE-2026-58531 is a Windows SMB elevation-of-privilege vulnerability caused by a race condition in a shared resource. It affects Windows SMB components and enables an authorized attacker to elevate privileges over the network. CVSS v3.1 base score 7.5 (NETWORK, HIGH impact), per Microsoft’s advis...
CVE-2026-58532
CVE-2026-58532 is a Windows Kernel elevation-of-privilege vulnerability: integer overflow/wraparound in the kernel could allow a local attacker to escalate privileges. Connected sources (NVD, EUVD/ENISA, CIRCL sightings) corroborate Windows Kernel impact and references to Microsoft security updat...
CVE-2026-58531 Windows SMB Elevation of Privilege Vulnerability
...
CVE-2026-58532 Windows Kernel Elevation of Privilege Vulnerability
...
CVE-2026-58540
CVE-2026-58540 is a Windows Installer elevation-of-privilege vulnerability. The issue arises from improper authorization in Windows Installer, enabling a locally authenticated attacker to gain elevated privileges. CVSSv3.1 metrics (Microsoft-supplied) indicate a local attack vector, low attack co...
CVE-2026-58540 Windows Installer Elevation of Privilege Vulnerability
...
CVE-2026-58540 Windows Installer Elevation of Privilege Vulnerability
...
CVE-2026-58538 Windows Bluetooth Service Elevation of Privilege Vulnerability
...
CVE-2026-58538 Windows Bluetooth Service Elevation of Privilege Vulnerability
...
CVE-2026-58538
CVE-2026-58538 describes a heap-based buffer overflow in the Windows Bluetooth Service that enables an authorized, local attacker to elevate privileges. The vulnerability is evidenced in multiple sources (NVD/NCSC/CIRCL) with consistent wording: heap-based overflow in the Bluetooth service leads ...
CVE-2026-58527 Windows Runtime Elevation of Privilege Vulnerability
...
CVE-2026-58527
CVE-2026-58527 affects Windows Runtime and is due to a race condition from improper synchronization, enabling local privilege escalation by an authenticated attacker. Public sources (NVD/NCSC/NVD-derived feeds and the official Microsoft entry) describe it as a Windows Runtime Elevation of Privile...
CVE-2026-58527 Windows Runtime Elevation of Privilege Vulnerability
...
CVE-2026-58277
CVE-2026-58277 is a Microsoft SharePoint elevation-of-privilege vulnerability (Office SharePoint). The entry cites improper authorization that lets an authenticated attacker elevate privileges over the network. CVSS 3.1 base score 8.8 (HIGH) with NETWORK attack vector, LOW attack complexity, and ...
CVE-2026-58277 Microsoft SharePoint Elevation of Privilege Vulnerability
...
CVE-2026-57968 Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability
...
CVE-2026-57968
The CVE-2026-57968 entry describes a Buffer over-read in Windows Subsystem for Linux (WSL2) that can enable local privilege escalation for an authorized attacker. Connected sources corroborate a kernel-level issue affecting WSL2; the base CVSS vector indicates LOCAL attack, LOW complexity, with H...
CVE-2026-57096 Windows Routing and Remote Access Service (RRAS) Elevation of Privilege Vulnerability
...
CVE-2026-57096
CVE-2026-57096 affects Windows Routing and Remote Access Service (RRAS). The issue is a heap-based buffer overflow in RRAS that allows an authorized attacker to elevate privileges locally. The CVSSv3.1 base score is 7.8 (HIGH). Exploitation details are not provided beyond local privilege escalati...