CVE-2026-26110

Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...

CVE-2026-26107

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

CVE-2026-26113

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally...

CVE-2026-26112

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

CVE-2026-25190

Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally...

CVE-2026-25166

Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally...

Windows GDI Remote Code Execution Vulnerability

Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally...

Microsoft Excel Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

Microsoft Office Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally...

Security Bulletin: IBM Trusteer Rapport installer affected by uncontrolled search path element vulnerability

Summary IBM Trusteer Rapport installer is affected by an uncontrolled search path element vulnerability that could allow a local attacker to execute arbitrary code. Vulnerability Details CVEID:CVE-2026-2713 DESCRIPTION: IBM Trusteer Rapport could allow a local attacker to execute arbitrary code o...

Intel Processors 输入验证错误漏洞

Intel Processors are a series of processors developed by the American company Intel. Intel Processors have a vulnerability related to input validation, which stems from improper input validation and may lead to privilege escalation. System software attackers with privileged access can potentially...

PT-2026-24320

Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description An issue exists where accessing a resource using an incompatible type, known as a 'type confusion', in Microsoft Office can allow an unauthorized attacker to execute code locally...

IBM Trusteer Rapport 代码问题漏洞

IBM Trusteer Rapport is a terminal security software developed by IBM Corporation, designed to protect browser sessions. Version 3.5.2309.290 of IBM Trusteer Rapport contains a code vulnerability. This vulnerability stems from an uncontrolled search path element in the DLL, which may allow local...

PT-2026-24496

Improper input validation in some UEFI firmware SMM module for the IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local...

PT-2026-24413

IBM Trusteer Rapport installer 3.5.2309.290 IBM Trusteer Rapport could allow a local attacker to execute arbitrary code on the system, caused by DLL uncontrolled search path element vulnerability. By placing a specially crafted file in a compromised folder, an attacker could exploit this...

Intel Processors 输入验证错误漏洞

Intel Processors are a series of processors developed by the American company Intel. Intel Processors have a vulnerability related to input validation, which stems from improper input validation and may lead to privilege escalation. System software attackers with privileged access can potentially...

PT-2026-24314

Уязвимость компонента Graphics Device Interface GDI операционных систем Windows связана с использованием ненадёжного пути поиска. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код...

Security Updates for Office Online Server (March 2026)

The Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-26107 - Heap-based buffer overflow in...

PT-2026-24322

Уязвимость пакетов программ Microsoft Office, 365 Apps for Enterprise и Excel связана с ненадежным разыменованием указателя. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код...