CVE-2026-42968

Out-of-bounds read in Windows Telephony Service allows an authorized attacker to disclose information locally...

CVE-2026-42837

Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...

CVE-2026-34180

Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive element whose content exceeds 2 gigabytes in length may cause a heap buffer over-read on 64-bit Unix and Unix-like platforms. Impact summary: The heap buffer over-read may crash the application Denial of Service or to...

CVE-2026-44814

CVE-2026-44814 is an information-disclosure vulnerability in the Windows DWM Core Library due to an out-of-bounds read. An authorized, local attacker could disclose information. CVSS 3.1: L/L:P? The metrics indicate: Attack Vector: Local; Privileges Required: Low; User Interaction: None; Scope: U...

EUVD-2026-35754

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally...

EUVD-2026-35728

Out-of-bounds read in Windows Telephony Service allows an authorized attacker to disclose information locally...

CVE-2026-42968

CVE-2026-42968 describes an out-of-bounds read vulnerability in Windows Telephony Service that allows an authorized, local attacker to disclose information. Root cause: bound-checking deficiency in the Telephony Service component. Impact: confidentiality impact high with local access and no user ...

CVE-2026-42908

The CVE-2026-42908 entry describes an Out-of-bounds read in Windows Remote Desktop Protocol (RDP) that enables an unauthenticated attacker to disclose information over the network. Affected component is Windows RDP; the underlying fault is an out-of-bounds read, leading to information disclosure....

EUVD-2026-35597

Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network...

EUVD-2026-35591

Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...

CVE-2026-42837

CVE-2026-42837 describes a buffer over-read in the Windows Projected File System Filter Driver that allows an authenticated local attacker to elevate privileges. The affected component is the Windows Projected File System Filter Driver; root cause is a buffer over-read within the filter driver. T...

CVE-2026-45608

CVE-2026-45608: Out-of-bounds read in Windows DHCP Server enables an authorized, local attacker to disclose information. Documents confirm the affected component as Windows DHCP Server and a local attack vector with low complexity and no privileges required (CVSSv3.1: AV:L/AC:L/PR:N/UI:N/S:U). Ba...

CVE-2026-45455

CVE-2026-45455 is an Excel information-disclosure vulnerability (out-of-bounds read) in Microsoft Office Excel. The issue allows an unauthorized attacker to disclose information over a network. Multiple connected documents confirm the affected component as Microsoft Excel (Office) and attribute t...

CVE-2026-44822

CVE-2026-44822 describes an out-of-bounds read in Microsoft Office Excel that can allow an unauthenticated attacker to disclose information over the network. Affected product: Microsoft Excel within Office. Underlying cause is an out-of-bounds read; the CVSS 3.1 base score is 8.2 (High) with netw...

CVE-2026-47652

The CVE-2026-47652 entry concerns a Windows Hyper-V component vulnerability described as an out-of-bounds read that can yield local code execution by an unauthorized attacker. Public sources indicate the flaw affects Windows Hyper-V, with an attack vector that is Local and requires High privilege...

CVE-2026-45641

CVE-2026-45641 affects Windows Hyper-V. The vulnerability is an out-of-bounds read in Hyper-V that enables a local attacker to execute code. Exploitation would be local with no user interaction and requires no privileges beyond those of the attacker, with a high impact on confidentiality, integri...

CVE-2026-45606

CVE-2026-45606 concerns an out-of-bounds read in the Microsoft UxTheme Library (uxtheme.dll) that allows an authorized, low-privilege user to cause a local denial of service. The NVD/NIST and CVE records concur on the impact as a local DoS; attack vector is LOCAL, with LOW prerequisites and NONE ...

CVE-2026-45639

The CVE-2026-45639 entry relates to an out-of-bounds read in Windows Remote Desktop Protocol (RDP). The underlying issue enables an unauthenticated, network-based attacker to disclose information over the network without user interaction. The CVSS 3.1 vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:...

CVE-2026-44821

The CVE-2026-44821 entry concerns an out-of-bounds read in Microsoft Office that could allow a local attacker to disclose information. Affected software is Microsoft Office; the vulnerability is a read boundary issue in a component/file used by Office, enabling local information disclosure. The p...

CVE-2026-45485

CVE-2026-45485: In Microsoft Office, an out-of-bounds read leads to local information disclosure. Documents confirm the vulnerability and its impact (local disclosure) with low severity (CVSS 3.1:3.3). Exploitation details and affected component/version specifics are not provided in the supplied ...