17694 matches found
CVE-2026-46491 SimpleSAMLphp casserver FileSystemTicketStore path traversal allows out-of-ticket-directory read/unserialize and conditional deletion
SimpleSAMLphp-casserver is a CAS 1.0 and 2.0 compliant CAS server in the form of a SimpleSAMLphp module. Prior to version 7.0.3, simplesamlphp-module-casserver builds file paths for the file-based CAS ticket store by directly concatenating the configured ticket directory with an attacker-controll...
CVE-2026-25856
OpenBullet2 through version 0.3.2 contains an authenticated remote code execution vulnerability that allows authenticated users to execute arbitrary C code on the server host by creating or modifying job configurations. Attackers can leverage the plain C execution mode, which lacks reference...
EUVD-2026-35533
Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...
EUVD-2026-35656
Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...
EUVD-2026-35655
Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...
CVE-2026-45636
Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally...
CVE-2026-44809
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-42837
Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-42828
Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-40409
Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...
CVE-2026-40404
Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...
EUVD-2026-35743
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-44809 Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
CVE-2026-44809
The vulnerability CVE-2026-44809 involves use-after-free in the Windows Common Log File System (CLFS) Driver. An authorized local attacker can elevate privileges. The data provided does not specify affected Windows versions, patch details, or remediation steps. No exploit specifics are documented...
EUVD-2026-35591
Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-42837
CVE-2026-42837 describes a buffer over-read in the Windows Projected File System Filter Driver that allows an authenticated local attacker to elevate privileges. The affected component is the Windows Projected File System Filter Driver; root cause is a buffer over-read within the filter driver. T...
CVE-2026-42837 Windows Projected File System Elevation of Privilege Vulnerability
...
CVE-2026-42837 Windows Projected File System Elevation of Privilege Vulnerability
...
CVE-2026-45636
The CVE-2026-45636 entries describe a heap-based buffer overflow in Windows NTFS that can allow an unauthenticated attacker to achieve local code execution. Affected software is Windows NTFS (filesystem driver). The underlying cause is a heap-based overflow; impact is high (CVE metrics show Local...
CVE-2026-45636 Windows NTFS Remote Code Execution Vulnerability
...