Lucene search
+L

4864 matches found

NVD
NVD
added 4 days ago9 views

CVE-2026-56087

Dell ThinOS 10, versions prior to 260510.2100 contain a Protection Mechanism Failure vulnerability. An attacker with physical access could potentially exploit this vulnerability, leading to unauthorized access to encrypted data...

6.1CVSS0.00145EPSS
Exploits0References1
CVE
CVE
added 4 days ago4 views

CVE-2026-56087

Dell ThinOS 10 is affected in all versions prior to 2605_10.2100. The vulnerability is a Protection Mechanism Failure that could allow an attacker with physical access to bypass protections and gain unauthorized access to encrypted data. Impact is supported by the CVSS data indicating high confid...

6.1CVSS6.1AI score0.00145EPSS
Exploits0References1
EUVD
EUVD
added 4 days ago7 views

EUVD-2026-44741

Dell ThinOS 10, versions prior to 260510.2100 contain a Protection Mechanism Failure vulnerability. An attacker with physical access could potentially exploit this vulnerability, leading to unauthorized access to encrypted data...

6.1CVSS6.1AI score0.00145EPSS
Exploits0References1
NVD
NVD
added 5 days ago5 views

CVE-2026-58543

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges with a physical attack...

6.3CVSS0.00171EPSS
Exploits0References1
NVD
NVD
added 5 days ago5 views

CVE-2026-50668

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to elevate privileges with a physical attack...

6.8CVSS0.00311EPSS
Exploits0References1
NVD
NVD
added 5 days ago3 views

CVE-2026-50299

Integer overflow or wraparound in Windows Storage Spaces Direct allows an unauthorized attacker to execute code with a physical attack...

6.8CVSS0.00327EPSS
Exploits0References1
NVD
NVD
added 5 days ago5 views

CVE-2026-49794

Out-of-bounds read in Windows USB Audio Class driver usbaudio.sys allows an unauthorized attacker to disclose information with a physical attack...

4.6CVSS0.00346EPSS
Exploits0References1
CVE
CVE
added 5 days ago6 views

CVE-2026-50299

The CVE-2026-50299 entry describes an integer overflow/wraparound in Windows Storage Spaces Direct. Affected component: Storage Spaces Direct (Windows). Root cause: integer overflow allowing an unauthorized attacker to execute code. Impact: code execution with a physical attack vector; CVSS vecto...

6.8CVSS6.2AI score0.00327EPSS
Exploits0References1Affected Software12
CVE
CVE
added 5 days ago6 views

CVE-2026-54132

CVE-2026-54132: Heap-based buffer overflow in the Windows Kernel can enable privilege escalation with physical access. Documents consistently describe an attacker who gains local, physical access to exploit the heap overflow to elevate privileges. The described impact is local elevation of privil...

6.8CVSS6.2AI score0.00312EPSS
Exploits0References1
CVE
CVE
added 5 days ago5 views

CVE-2026-55000

CVE-2026-55000 affects the Windows USB Print Driver and is a use-after-free vulnerability that enables an unauthorized attacker to elevate privileges with physical access. CVSS 3.1: AV=P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H (base score 6.4, MEDIUM). Exploitation is described as physical access with no ...

6.4CVSS6.1AI score0.00253EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 5 days ago9 views

Windows USB Audio Class Driver Information Disclosure Vulnerability

Out-of-bounds read in Windows USB Audio Class driver usbaudio.sys allows an unauthorized attacker to disclose information with a physical attack...

6.1CVSS6.1AI score0.0037EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago6 views

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges with a physical attack...

6.3CVSS6.1AI score0.00296EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago8 views

Microsoft XML Security Feature Bypass Vulnerability

Untrusted search path in Microsoft XML allows an unauthorized attacker to bypass a security feature with a physical attack...

6.4CVSS6.1AI score0.00248EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago6 views

Windows USB Print Driver Elevation of Privilege Vulnerability

Use after free in Windows USB Print Driver allows an unauthorized attacker to elevate privileges with a physical attack...

6.4CVSS6.1AI score0.00253EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago7 views

Universal Print Management Service Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges with a physical attack...

6.3CVSS6.2AI score0.00171EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago4 views

Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to elevate privileges with a physical attack...

6.8CVSS6.2AI score0.00311EPSS
Exploits0
Positive Technologies
Positive Technologies
added 5 days ago4 views

PT-2026-58491

Name of the Vulnerable Software and Affected Versions Windows NTFS affected versions not specified Description A heap-based buffer overflow exists in the Windows NTFS file system. This issue allows an unauthorized attacker to elevate privileges through a physical attack, such as using a rogue USB...

6.8CVSS6.2AI score0.00311EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 5 days ago9 views

PT-2026-58186

Name of the Vulnerable Software and Affected Versions Windows Spaceport.sys affected versions not specified Description An integer overflow or wraparound exists in the Spaceport.sys driver. This issue allows an unauthorized attacker with physical access to the system to elevate their privileges t...

6.8CVSS6.1AI score0.00327EPSS
Exploits0References3
NVD
NVD
added last week9 views

CVE-2026-10663

In Zephyr's experimental USB host stack CONFIGUSBHOSTSTACK, usbhdevicedisconnect subsys/usb/host/usbhdevice.c freed the root usbdevice slab object without clearing the cached pointer ctx-root. The bus removal handler devremovedhandler subsys/usb/host/usbhcore.c decides what to tear down solely fr...

6.1CVSS0.00159EPSS
Exploits0References2
CVE
CVE
added last week16 views

CVE-2026-10663

The vulnerability CVE-2026-10663 affects Zephyr’s experimental USB host stack (CONFIG_USB_HOST_STACK). freed root usb_device slab in usbh_device_disconnect() leaves ctx->root dangling; bus removal handler dev_removed_handler() uses ctx->root to decide teardown. Synthesis of DEV_REMOVED even...

6.1CVSS6.1AI score0.00159EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder