Lucene search
K

249 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/25 9:44 p.m.2 views

CVE-2026-4823

A flaw has been found in Enter Software Iperius Backup up to 8.7.3. Affected by this vulnerability is an unknown functionality of the component NTLM2 Handler. Executing a manipulation can lead to information disclosure. The attack is restricted to local execution. Attacks of this nature are highl...

2.5CVSS5.1AI score0.00131EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/03/10 6:31 p.m.4 views

EUVD-2026-10637

Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00273EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 6:31 p.m.7 views

EUVD-2026-10636

Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00273EPSS
Exploits0References2
OSV
OSV
added 2026/03/10 6:18 p.m.4 views

CVE-2026-25171

Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7CVSS5.7AI score0.00273EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 6:18 p.m.7 views

CVE-2026-25171

Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7CVSS0.00273EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/10 5:4 p.m.3 views

CVE-2026-25171

Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00273EPSS
Exploits0References2Affected Software21
Microsoft CVE
Microsoft CVE
added 2026/03/10 2:0 p.m.3 views

Windows Authentication Elevation of Privilege Vulnerability

Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00273EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.2 views

PT-2026-24298

Уязвимость компонента Windows Authentication операционных систем Windows связана с использованием памяти после её освобождения. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии...

7CVSS5.8AI score0.00273EPSS
Exploits0References6
The Hacker News
The Hacker News
added 2026/03/05 11:0 a.m.21 views

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Organizations typically roll out multi-factor authentication MFA and assume stolen passwords are no longer enough to access systems. In Windows environments, that assumption is often wrong. Attackers still compromise networks every day using valid credentials. The issue is not MFA itself, but...

6.2AI score
Exploits0
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.5 views

Changing IDExpert Windows Logon Agent 安全漏洞

Changing IDExpert Windows Logon Agent is an identity authentication client software developed by Changing, a company based in Taiwan, China. This software is designed to enhance security during Windows login processes. Changing IDExpert Windows Logon Agent contains a security vulnerability that...

9.8CVSS6.4AI score0.00508EPSS
Exploits0References3
NVD
NVD
added 2026/02/10 6:16 p.m.3 views

CVE-2026-21249

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally...

3.3CVSS0.10738EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 6:16 p.m.5 views

CVE-2026-21249

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally...

3.3CVSS5.7AI score0.10738EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.6 views

CVE-2026-21249

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally...

3.3CVSS5.5AI score0.10738EPSS
Exploits0References2Affected Software19
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.9 views

Microsoft NTLM 安全漏洞

Microsoft NTLM is an authentication protocol used by Microsoft on networks that include systems running the Windows operating system, as well as standalone systems. There are security vulnerabilities in Microsoft NTLM. Attackers exploit these vulnerabilities to carry out phishing attacks. The...

3.3CVSS5.8AI score0.10738EPSS
Exploits0References1
NVD
NVD
added 2026/02/02 11:16 p.m.6 views

CVE-2026-25228

Signal K Server is a server application that runs on a central hub in a boat. Prior to 2.20.3, a path traversal vulnerability in SignalK Server's applicationData API allows authenticated users on Windows systems to read, write, and list arbitrary files and directories on the filesystem. The...

5CVSS0.00384EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/14 6:22 p.m.5 views

CVE-2026-20925

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS6.8AI score0.17312EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/14 6:22 p.m.3 views

CVE-2026-20872

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS6.8AI score0.1911EPSS
Exploits0References1
OSV
OSV
added 2026/01/13 6:16 p.m.1 views

CVE-2026-20925

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS5.8AI score0.17312EPSS
Exploits0References1
CVE
CVE
added 2026/01/13 5:57 p.m.21 views

CVE-2026-20872

CVE-2026-20872 affects Windows NTLM: external control of a file name or path allows an attacker to spoof authentication over the network. The description states this vulnerability and related references indicate a Windows NTLM spoofing risk. The connected Nessus/NCSC/EUVD/NVD entries confirm the ...

6.5CVSS6.4AI score0.1911EPSS
Exploits0References3Affected Software14
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.4 views

CVE-2021-22048

The vCenter Server contains a privilege escalation vulnerability in the IWA Integrated Windows Authentication authentication mechanism. A malicious actor with non-administrative access to vCenter Server may exploit this issue to elevate privileges to a higher privileged group...

8.8CVSS7.3AI score0.09976EPSS
Exploits0References1
Rows per page
Query Builder