CVE-2026-11117

CVE-2026-11117 is a use-after-free in the Views component of Google Chrome on Windows, prior to version 149.0.7827.53. The vulnerability allows a remote attacker to trigger arbitrary code execution by presenting a crafted HTML page. The underlying issue is a use-after-free flaw in the Views handl...

CVE-2026-6359

Use after free in Video in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

Acronis True Image 代码问题漏洞

Acronis True Image is a renowned data backup and restoration software developed by the Swiss company Acronis. This software can be used to create drive and disk images, and to restore those images when a clean system is required. Versions of Acronis True Image for Windows prior to version 42902...

CVE-2026-30903

External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via network access...

CVE-2026-30903

CVE-2026-30903 concerns Zoom Workplace for Windows prior to 6.6.0. The issue is described as External Control of File Name or Path in the Mail feature, which may allow an unauthenticated user to escalate privileges over the network. Affected product/feature: Zoom Workplace for Windows (Mail featu...

CVE-2026-23856

Dell iDRAC Service Module iSM for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service Module iSM for Linux, versions prior to 5.4.1.1, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to...

CVE-2026-23568

An out-of-bounds read vulnerability in the TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 26.1 for Windows allows an attacker on the adjacent network to cause information disclosure or denial-of-service via a special crafted packet. The leaked...

CVE-2023-25779

Uncontrolled search path element in some IntelR ThunderboltTM DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access...

PT-2025-50592

A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to coerce the service into transmitting data to an arbitrary internal IP address, potentially leaking sensitive information...

Intel QAT 安全漏洞

Intel QAT Windows software refers to the collection of Intel® Data Protection and Compression Acceleration Technology software components that provide support for the Windows operating system. The Intel QAT Windows software has a buffer overflow vulnerability that originates from a buffer overflo...

PT-2025-46389

Name of the Vulnerable Software and Affected Versions IntelR PROSet/Wireless WiFi Software for Windows versions prior to 23.160 Description A flaw exists in input validation within IntelR PROSet/Wireless WiFi Software for Windows. An authenticated attacker with high complexity access may be able ...

CVE-2025-3222

CVE-2025-3222 covers GE Vernova Smallworld SWMFS, with an improper authentication flaw that enables authentication abuse. Affected are Smallworld versions: Linux < 5.3.3 and Windows

BeyondTrust Privilege Management for Windows < 25.4.270.0 Multiple Vulnerabilities (BT25-05) (BTS25-06)

The version of BeyondTrust Privilege Management for Windows installed on the remote host is prior to 25.4.270.0. It is, therefore, affected by multiple vulnerabilities as referenced in the BT25-05 and BT25-06 advisories: - Prior to version 25.4.270.0, a local authenticated attacker can manipulate...

CVE-2023-28806

An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows 4.2.0.190...

CVE-2025-20006

Use after free for some IntelR PROSet/Wireless WiFi Software for Windows before version 23.100 may allow an unauthenticated user to potentially enable denial of service via adjacent access...

CVE-2024-8033

Inappropriate implementation in WebApp Installs in Google Chrome on Windows prior to 128.0.6613.84 allowed an attacker who convinced a user to install a malicious application to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

PT-2024-12754 · Intel · Intel Proset/Wireless Wifi

Name of the Vulnerable Software and Affected Versions: IntelR PROSet/Wireless WiFi software for Windows versions prior to 23.20 Description: The issue is related to improper input validation, which may allow an unauthenticated user to potentially enable denial of service via adjacent access. This...

CVE-2024-23457

The anti-tampering functionality of the Zscaler Client Connector can be disabled under certain conditions when an uninstall password is enforced. This affects Zscaler Client Connector on Windows prior to 4.2.0.209...

CVE-2024-24912

A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client for Windows versions E88.10 and below. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system...

PT-2024-2713 · Intel · Intel Thunderbolt Dch Drivers

Name of the Vulnerable Software and Affected Versions: IntelR ThunderboltTM DCH drivers for Windows versions prior to 88 Description: The issue is related to improper input validation in some IntelR ThunderboltTM DCH drivers for Windows, which may allow an authenticated user to potentially enable...