CVE-2026-44803

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...

CVE-2026-32193

Improper limitation of a pathname to a restricted directory 'path traversal' in Microsoft Azure Kubernetes Service allows an authorized attacker to execute code locally...

EUVD-2026-35759

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...

EUVD-2026-35758

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...

CVE-2026-44803

CVE-2026-44803 describes an integer overflow/wraparound in Windows Win32K - GRFX that can allow a local attacker to execute code. The vulnerability is identified across multiple sources (NVD, CVE listing, and MSRC update page) and is classified with a high impact: local code execution, requiring ...

EUVD-2026-35587

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally...

CVE-2026-48574

CVE-2026-48574 is a Windows Media vulnerability described as a heap-based buffer overflow that allows an unauthorized attacker to execute code locally. The cited CVSS 3.1 vector (LOCAL, HIGH impact on confidentiality, integrity, and availability; user interaction required; no privileges required)...

CVE-2026-45636

The CVE-2026-45636 entries describe a heap-based buffer overflow in Windows NTFS that can allow an unauthenticated attacker to achieve local code execution. Affected software is Windows NTFS (filesystem driver). The underlying cause is a heap-based overflow; impact is high (CVE metrics show Local...

EUVD-2026-35559

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally...

CVE-2026-45463

CVE-2026-45463 describes a heap-based buffer overflow in Microsoft Office that allows an attacker with local access to execute code on the affected system. The sources identify Microsoft Office and classify the flaw as a heap-based overflow with high impact (CVSSv3.1: 8.4, LOCAL access, no user i...

CVE-2026-45457

CVE-2026-45457 affects Microsoft Word (Office). The vulnerability is a pointer dereference in Word that can allow a local attacker to execute code on the affected system after user interaction. Root cause is an untrusted pointer dereference in Word’s handling of certain content. The CVSS base met...

CVE-2026-47652

The CVE-2026-47652 entry concerns a Windows Hyper-V component vulnerability described as an out-of-bounds read that can yield local code execution by an unauthorized attacker. Public sources indicate the flaw affects Windows Hyper-V, with an attack vector that is Local and requires High privilege...

CVE-2026-47635

CVE-2026-47635 concerns a type-confusion vulnerability in Microsoft Office components (notably Outlook and Word) that allows an unauthenticated/user-local attacker to execute code locally. The underlying issue is a resource access type mismatch that can lead to remote attack surfaces when process...

CVE-2026-32193

CVE-2026-32193 targets Microsoft Azure Kubernetes Service with a path-traversal flaw that permits an authorized attacker to run code locally. The NVD entry describes it as a restricted-pathname limitation issue with CVSS v3.1 base score 8.8 (HIGH), attack vector LOCAL, required privileges LOW, no...

CVE-2026-45645

The provided data identify CVE-2026-45645 as a heap-based buffer overflow affecting Microsoft Office, enabling local code execution. Details show an exploit would require user interaction and has a local attack surface (attackVector: LOCAL, userInteraction: REQUIRED) with high impacts on confiden...

CVE-2026-45643

Summary of CVE-2026-45643 : Affected product is Microsoft Word (Office). The vulnerability is an untrusted pointer dereference in Word that allows an attacker to achieve local code execution on a vulnerable system with high impact (confidentiality, integrity, and availability). The CVSS-3.1 vecto...

CVE-2026-45641

CVE-2026-45641 affects Windows Hyper-V. The vulnerability is an out-of-bounds read in Hyper-V that enables a local attacker to execute code. Exploitation would be local with no user interaction and requires no privileges beyond those of the attacker, with a high impact on confidentiality, integri...

CVE-2026-45461

CVE-2026-45461 describes a heap-based buffer overflow in Microsoft Office that allows an unauthorized attacker to execute code locally. Documents confirm the vulnerability exists in Microsoft Office and indicate a local attack vector with high impact (C: HIGH, I: HIGH, A: HIGH) and a base score o...

CVE-2026-45458

Microsoft Office (including Outlook and Word) is affected by CVE-2026-45458 due to a type-confusion in resource access, enabling local code execution. The vulnerability arises when an incompatible type is accessed, with a local attack vector, no user interaction, and no privileges required. The C...

CVE-2026-45456

CVE-2026-45456 affects Microsoft Office apps (notably Outlook and Word) and is caused by a resource access type confusion that can lead to local code execution. The vulnerability allows an authenticated, local attacker to run arbitrary code without user interaction, with high impact on confidenti...