Lucene search
+L

2327 matches found

CVE
CVE
added 2026/01/13 5:56 p.m.32 views

CVE-2026-20870

CVE-2026-20870 corresponds to a Use-after-free vulnerability in Windows Win32K, specifically in the ICOMP component, enabling a locally authenticated attacker to achieve elevation of privileges . The root cause is a memory-management issue in Win32K ICOMP leading to use-after-free conditions that...

7.8CVSS6.7AI score0.0045EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2026/01/13 5:56 p.m.25 views

CVE-2026-20863 Win32k Elevation of Privilege Vulnerability

...

7CVSS0.00375EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/13 5:56 p.m.6 views

CVE-2026-20863 Win32k Elevation of Privilege Vulnerability

...

7CVSS6.6AI score0.00375EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/13 5:56 p.m.4 views

CVE-2026-20863

Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00375EPSS
Exploits0References2Affected Software8
CVE
CVE
added 2026/01/13 5:56 p.m.32 views

CVE-2026-20863

CVE-2026-20863 is a local privilege escalation in Windows Win32K (ICOMP) caused by a double-free condition. Exploitable by an authorized local attacker with LOW privileges and no user interaction, leading to SYSTEM-level access as described in multiple feeds. Connected documents confirm a Win32K ...

7CVSS6.7AI score0.00375EPSS
Exploits0References1Affected Software6
CVE
CVE
added 2026/01/13 5:56 p.m.35 views

CVE-2026-20920

CVE-2026-20920 is a local elevation-of-privileges vulnerability in Microsoft Windows Win32K (ICOMP). The description indicates a use-after-free in Win32K that could allow an authorized user to elevate privileges locally. Public details in connected documents confirm affected scope includes Window...

7.8CVSS6.7AI score0.00475EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2026/01/13 5:56 p.m.28 views

CVE-2026-20920 Win32k Elevation of Privilege Vulnerability

...

7.8CVSS0.00475EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/13 5:56 p.m.2 views

CVE-2026-20920

Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...

7.8CVSS5.5AI score0.00475EPSS
Exploits0References2Affected Software4
Vulnrichment
Vulnrichment
added 2026/01/13 5:56 p.m.4 views

CVE-2026-20811 Win32k Elevation of Privilege Vulnerability

...

7.8CVSS6.6AI score0.00485EPSS
Exploits0References1
CVE
CVE
added 2026/01/13 5:56 p.m.30 views

CVE-2026-20811

CVE-2026-20811 is a local privilege escalation in Windows Win32K (ICOMP) caused by type confusion. Exploit would grant elevated privileges to an authorized user on the same host. Microsoft’s January 2026 updates address this family of issues (e.g., KB5074109/KB5073457 for affected Windows version...

7.8CVSS6.5AI score0.00485EPSS
Exploits0References1Affected Software6
Cvelist
Cvelist
added 2026/01/13 5:56 p.m.22 views

CVE-2026-20811 Win32k Elevation of Privilege Vulnerability

...

7.8CVSS0.00485EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.5 views

PT-2026-2708

CVE-2026-20863 Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally. https://t.co/OJll1df465...

7CVSS7.1AI score0.00375EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.7 views

Microsoft Win32k 资源管理错误漏洞

Microsoft Win32k is a system file for Windows multi-user administration by Microsoft Corporation USA. Microsoft Win32k is vulnerable to a resource management error. An attacker could exploit the vulnerability to elevate privileges. The following products and versions are affected: Windows Server...

7.8CVSS5.8AI score0.00475EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.11 views

Microsoft Win32k 安全漏洞

Microsoft Win32k is a system file for Windows multi-user management from Microsoft USA. A security vulnerability exists in Microsoft Win32k. An attacker could exploit the vulnerability to elevate privileges. The following products and versions are affected: Windows Server 2022,Windows Server 2022...

7.8CVSS5.8AI score0.00485EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 6:13 p.m.5 views

CVE-2025-62458

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00663EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 5:55 p.m.31 views

CVE-2025-62458

CVE-2025-62458 is a Windows Win32K GRFX elevation-of-privilege vulnerability (heap-based overflow) that enables local privilege escalation by an authorized user. Connected sources confirm the issue is associated with Windows Win32K GRFX components and is part of Microsoft’s December 2025 patch cy...

7.8CVSS7AI score0.00663EPSS
Exploits0References1Affected Software10
Vulnrichment
Vulnrichment
added 2025/12/09 5:55 p.m.2 views

CVE-2025-62458 Win32k Elevation of Privilege Vulnerability

...

7.8CVSS6.6AI score0.00663EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 5:55 p.m.31 views

CVE-2025-62458 Win32k Elevation of Privilege Vulnerability

...

7.8CVSS0.00663EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2025/12/09 12:0 a.m.13 views

KLA90811 Multiple vulnerabilities in Microsoft Product (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, spoof user interface, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a...

8.8CVSS9.4AI score0.02075EPSS
Exploits5References35
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.5 views

KB5071544: Windows 10 version 1809 / Windows Server 2019 Security Update (December 2025)

The remote Windows host is missing security update 5071544. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 - Out-of-bounds read ...

8.8CVSS8.4AI score0.02383EPSS
Exploits7References27
Rows per page
Query Builder