3872 matches found
SignalRGB kernel driver contains improper access control and IOCTL vulnerabilities
Overview The SignalRGB kernel driver, SignalIo.sys, contains two vulnerabilities involving improper access control and unsafe memory handling. The device object is created with an overly permissive Discretionary Access Control List DACL that allows user-mode processes to access privileged hardwar...
CVE-2026-48583
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-45657
Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network...
CVE-2026-45653
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-45600
Access of resource using incompatible type 'type confusion' in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally...
CVE-2026-42984
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-42980
Integer underflow wrap or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-42916
Integer underflow wrap or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...
Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs
Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time of release. Of the 206 flaws, 39 are rated Critical, and 167 are rated Important in severity. This includes 63...
EUVD-2026-35527
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
EUVD-2026-35697
Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network...
CVE-2026-48583
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-45657
Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network...
CVE-2026-45653
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-45600
Access of resource using incompatible type 'type confusion' in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally...
CVE-2026-42984
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-42980
Integer underflow wrap or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-42984 Windows Kernel Elevation of Privilege Vulnerability
...
EUVD-2026-35734
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-42984
CVE-2026-42984 relates to a use-after-free in the Windows Kernel enabling an authorized local attacker to elevate privileges. Affected component: Windows Kernel. Underlying cause: use-after-free (exact technical details not provided here). Impact: local privilege elevation with high confidentiali...