619 matches found
CVE-2026-26160
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally...
CVE-2026-26151
Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network...
Remote Desktop Spoofing Vulnerability
Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network...
PT-2026-32811
Name of the Vulnerable Software and Affected Versions Windows Remote Procedure Call affected versions not specified Description An issue in Windows Remote Procedure Call allows an authorized attacker to locally disclose sensitive information. This data leak can be used by attackers to map the...
PT-2026-32731
Name of the Vulnerable Software and Affected Versions Microsoft Windows 10 versions 10.0.14393.0 through 10.0.14393.9059 Description Insufficient UI warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network by misleading users int...
CVE-2026-4434
Improper certificate validation in the PAM propagation WinRM connections allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...
EUVD-2026-13688
Improper certificate validation in the PAM propagation WinRM connections allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...
CVE-2026-4434
Improper certificate validation in the PAM propagation WinRM connections allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...
CVE-2026-4434
Improper certificate validation in the PAM propagation WinRM connections allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...
CVE-2026-4434
Improper certificate validation in the PAM propagation WinRM connections allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...
CVE-2026-4434
CVE-2026-4434: Improper certificate validation in PAM propagation WinRM connections enables a network attacker to perform a man-in-the-middle attack when TLS certificate verification is disabled. Documented across multiple feeds (Red Hat, EUVD, NVD, etc.) with a high impact concern (CVSS 8.1). Af...
CVE-2026-4434
Improper certificate validation in the PAM propagation WinRM connections allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...
PT-2026-26608
Name of the Vulnerable Software and Affected Versions versions prior to 2026-4434 Description A flaw exists in the validation of certificates during PAM propagation WinRM connections. This allows a network attacker to conduct a man-in-the-middle attack by disabling TLS certificate verification. T...
About Elevation of Privilege - Windows RDS (CVE-2026-21533) vulnerability
About Elevation of Privilege - Windows RDS CVE-2026-21533 vulnerability. The vulnerability is from the February Microsoft Patch Tuesday. Remote Desktop Services RDS is a component of Microsoft Windows that allows a user to initiate and control an interactive session on a remote computer or virtua...
CVE-2026-25172
CVE-2026-25172 concerns Windows Routing and Remote Access Service (RRAS). The RRAS integer overflow/wraparound vulnerability allows an authenticated attacker to execute code over a network. Connected advisories confirm this affects RRAS and note that Microsoft released updates to fix the vulnerab...
Exploit for Improper Privilege Management in Microsoft
CVE-2026-21533 Scanner: Windows RDP Local Privilege Escalation...
Exploit for Improper Privilege Management in Microsoft
Security Vulnerability CVE-2026-21533 Overview A HIGH v...
Exploit for Improper Privilege Management in Microsoft
Security Vulnerability CVE-2026-21533 Overview A HIGH v...
CVE-2026-26064
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Versions 9.2.1 and below contain a Path Traversal vulnerability that allows arbitrary file writes anywhere the user has write permissions. On Windows, this leads to Remote Code Execution by writin...
Exploit for Improper Privilege Management in Microsoft
Privilege Escalation Vulnerability in Windows Remote Desktop...