CVE-2026-34334

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

EUVD-2026-30015

In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in netifnapidellocked on disconnect Remove redundant netifnapidel call from disconnect path. A WARN may be triggered in netifnapidellocked during USB device disconnect: WARNING: CPU: 0 PID: 11 at...

nautobot-app-intent-networking (>=2.0.9 <=2.0.11), nautobot-bgp-models (>=3.0.0a1 <=3.0.0a2) +13 more potentially affected by CVE-2026-44794 via nautobot (>=3.0.0rc2 <=3.1.1)

nautobot PYPI version =3.0.0rc2, =2.0.9, =3.0.0a1, =3.0.0rc1, =4.0.0a1, =3.0.0a1, =4.0.0a1, =4.0.0a2 - nautobot-ssot =4.0.0a1 - nautobot-welcome-wizard =3.0.0a1 Source cves: CVE-2026-44794 Source advisory: OSV:GHSA-WPXJ-44W3-2J6X...

CLSA-2025-1762538558 containernetworking-plugins: Fix of 13 CVEs

rebuild with newer golang to fix multiple security vulnerabilities: - CVE-2023-24534: fix HTTP/2 rapid reset attack leading to denial of service - CVE-2023-29400: fix HTTP/2 frame processing panic leading to denial of service - CVE-2022-41725: fix HTTP/2 server connection handling causing...

MAL-2026-3686 Malicious code in amino-fix (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 807db606fec148f1acf0e1ddb4ec2e0a68ba672bb8e5641f9eefd0d425f30a44 The asyncfix subpackage's signature helper in aminofix/asyncfix/lib/util/helpers.py lines 22-25 does not compute the NDC-MSG-SIG locally. Instead,...

Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark

In this article 1. AI-powered vulnerability discovery at hyper-scale 2. Codename: MDASH—Microsoft Security’s new multi-model agentic scanning harness 3. Using codename MDASH for security research 4. The 5.12.2026 Patch Tuesday cohort 5. Two deep dives 1. CVE-2026-33827—Remote unauthenticated UAF ...

EUVD-2026-29666

Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network...

EUVD-2026-29665

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network...

EUVD-2026-29670

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network...

EUVD-2026-29629

Authentication bypass using an alternate path or channel in Windows TCP/IP allows an authorized attacker to bypass a security feature over a network...

EUVD-2026-29583

Heap-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

CVE-2026-40414

Windows TCP/IP Denial of Service Vulnerability...

CVE-2026-40401

Windows TCP/IP Denial of Service Vulnerability...

CVE-2026-40413

Windows TCP/IP Denial of Service Vulnerability...

CVE-2026-40401

Windows TCP/IP Denial of Service Vulnerability...

CVE-2026-34334 Windows TCP/IP Elevation of Privilege Vulnerability

...

CVE-2026-40415

Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network...

CVE-2026-40406

Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network...

CVE-2026-40399 Windows TCP/IP Elevation of Privilege Vulnerability

...

Windows TCP/IP Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...