Lucene search
K

1681 matches found

NVD
NVD
added yesterday2 views

CVE-2026-50412

Stack-based buffer overflow in Windows NTFS allows an authorized attacker to elevate privileges locally...

7.8CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday16 views

CVE-2026-54115 Windows Message Queuing (MSMQ) Elevation of Privilege Vulnerability

...

7.8CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday15 views

CVE-2026-50489 Win32k Elevation of Privilege Vulnerability

...

8.8CVSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added yesterday4 views

Win32k Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Win32K allows an authorized attacker to elevate privileges locally...

8.8CVSS6.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/06/17 9:41 a.m.12 views

Malwarebytes earns AV-TEST Top Product award, aces other third-party tests

Our job is to protect people from online threats, and independent testing is one of the best ways to measure how well we’re doing. Malwarebytes nabbed AV-TEST's Top Product award after scoring 17.5 points out of a possible 18 in the research organization's most recent Windows security test. The...

6AI score
Exploits0
Microsoft KB
Microsoft KB
added 2026/06/09 12:0 a.m.154 views

KB5094141: Servicing stack update for Windows 10, version 1607 and Windows Server 2016: June 9, 2026

None None...

6.1AI score
Exploits0
EUVD
EUVD
added 2026/05/20 12:31 a.m.15 views

EUVD-2026-31006

Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnerability has been made public violating coordinated vulnerability best practices. We are issuing this CVE to provide mitigation guidance that can be...

6.8CVSS5.7AI score0.01249EPSS
Exploits2References2
NVD
NVD
added 2026/05/12 6:17 p.m.11 views

CVE-2026-35419

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally...

5.5CVSS0.00374EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/05/11 12:0 a.m.13 views

Windows/x86 (XP SP3) (English) calc.exe Shellcode

15 bytes small Windows/x86 XP SP3 English calc.exe shellcode...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/11 12:0 a.m.14 views

OSK ATBroker Registry Security Scanner

This program is a defensive Windows security scanner designed to inspect registry locations related to On-Screen Keyboard osk.exe and Accessibility/ATBroker configuration, which are sometimes abused in privilege escalation or persistence attacks...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: samba (UTSA-2026-017656)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017656 advisory. A flaw was found in samba. The Samba smbd file server must map Windows group identities SIDs into unix group ids gids. The code that performs this had a flaw that...

6.8CVSS6.8AI score0.01616EPSS
Exploits0References4
CVE
CVE
added 2026/05/05 7:33 p.m.16 views

CVE-2026-34527

CVE-2026-34527 affects Sandboxie-Plus for Windows (versions 1.17.2 and earlier). The vulnerability arises in SbieIniServer::HashPassword, where the high nibble of each SHA-1 digest byte is extracted incorrectly (shifted by 8 instead of 4). This causes the stored EditPassword hash to preserve only...

5.3CVSS5.7AI score0.00091EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/29 12:0 a.m.10 views

CVE-2025-50328

A vulnerability in B1 Free Archiver v1.5.86 allows files extracted from downloaded archives to bypass Windows Mark of the Web MotW protections. When an archive is downloaded from the internet and extracted using B1 Free Archiver, the software fails to propagate the 'Zone.Identifier' alternate dat...

6AI score0.00334EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.7 views

PT-2026-34742

Name of the Vulnerable Software and Affected Versions Carlson VASCO-B GNSS Receiver affected versions not specified Description The Carlson VASCO-B GNSS Receiver lacks an authentication mechanism. This allows an attacker with network access to directly access and modify its configuration and...

9.4CVSS5.8AI score0.00373EPSS
Exploits0References8
Packet Storm News
Packet Storm News
added 2026/04/22 12:0 a.m.14 views

ATBroker Registry Security Scanner

This code is a defensive Windows security scanner designed to audit potentially sensitive Registry paths related to ATBroker Accessibility Technology Broker and core system hives. It only checks for the presence of certain registry keys to see if they're protected or accessible...

5.8AI score
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/14 4:57 p.m.7 views

CVE-2026-26152 Microsoft Cryptographic Services Elevation of Privilege Vulnerability

...

7CVSS5.8AI score0.00234EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/04/14 2:0 p.m.8 views

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS6.4AI score0.00179EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.10 views

Microsoft Windows Local Security Authority Subsystem Service 安全漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal program of the American company Microsoft, responsible for implementing Windows system security policies. It verifies user identities when a computer or server is logged in, manages user password changes, and generate...

6.5CVSS5.8AI score0.00893EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:3 p.m.6 views

CVE-2026-23674

Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...

7.5CVSS5.8AI score0.01191EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/23 9:36 p.m.22 views

CVE-2026-32912

...

Exploits0
Rows per page
Query Builder