521 matches found
Microsoft Windows Type Confusion Vulnerability
Microsoft Desktop Windows Manager contains a type confusion vulnerability that could allow an authorized attacker to elevate privileges locally...
KB5077179: Windows 11 Version 26H1 Security Update (February 2026)
The remote Windows host is missing security update 5077179. It is, therefore, affected by multiple vulnerabilities - Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. CVE-2026-21513 - Access of resource using incompatible...
VulnCheck KEV: CVE-2026-21519
Access of resource using incompatible type 'type confusion' in Desktop Window Manager allows an authorized attacker to elevate privileges locally...
KB5075906: Windows Server 2022 / Azure Stack HCI 22H2 Security Update (February 2026)
The remote Windows host is missing security update 5075906. It is, therefore, affected by multiple vulnerabilities - Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. CVE-2026-21513 - Access of resource using incompatible...
KB5075904: Windows 10 version 1809 / Windows Server 2019 Security Update (February 2026)
The remote Windows host is missing security update 5075904. It is, therefore, affected by multiple vulnerabilities - Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. CVE-2026-21513 - Access of resource using incompatible...
KB5075941: Windows 11 version 23H2 Security Update (February 2026)
The remote Windows host is missing security update 5075941. It is, therefore, affected by multiple vulnerabilities - Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. CVE-2026-21513 - Access of resource using incompatible...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
SCTT-2026-33-0002: DWM Visual-Field Singularity 📡 Theoret...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
SCTT-2026-33-0002: DWM Visual-Field Singularity 📡 Theoret...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
CTT-Memory-Vortex-20805 This script utilizes the \alpha=0.030...
About Information Disclosure – Desktop Window Manager (CVE-2026-20805) vulnerability
About Information Disclosure - Desktop Window Manager CVE-2026-20805 vulnerability. Desktop Window Manager is a compositing window manager that has been part of Windows since Windows Vista. Exploitation of the vulnerability, which was addressed in the January Microsoft Patch Tuesday, allows a loc...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
CVE-2026-20805-PoC The PoC of information disclosure in Micros...
CVE-2026-20805
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally...
CVE-2026-20842
Use after free in Windows DWM allows an authorized attacker to elevate privileges locally...
CVE-2026-20871
Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...
Microsoft Fixes 114 Windows Flaws in January 2026 Patch, One Actively Exploited
Microsoft on Tuesday rolled out its first security update for 2026, addressing 114 security flaws, including one vulnerability that it said has been actively exploited in the wild. Of the 114 flaws, eight are rated Critical, and 106 are rated Important in severity. As many as 58 vulnerabilities...
Patch Tuesday, January 2026 Edition
Microsoft today issued patches to plug at least 113 security holes in its various Windows operating systems and supported software. Eight of the vulnerabilities earned Microsoft's most-dire "critical" rating, and the company warns that attackers are already exploiting one of the bugs fixed today...
CVE-2026-20871
Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...
CVE-2026-20871
Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...
CVE-2026-20842
Use after free in Windows DWM allows an authorized attacker to elevate privileges locally...
CVE-2026-20805
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally...