292 matches found
CVE-2026-21237
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...
CVE-2026-21242 Windows Subsystem for Linux Elevation of Privilege Vulnerability
...
CVE-2026-21242
Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...
CVE-2026-21242
CVE-2026-21242 concerns a use-after-free vulnerability in Windows Subsystem for Linux. The issue allows an authorized local attacker to elevate privileges, as indicated by the CVSS 3.1 metrics (AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H) with a base score of 7.0 (HIGH). Affected components and exact ver...
Windows Subsystem for Linux Elevation of Privilege Vulnerability
Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...
Windows Subsystem for Linux Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...
Microsoft Windows Subsystem for Linux 资源管理错误漏洞
Microsoft Windows Subsystem for Linux WSL is a Linux subsystem under Windows developed by Microsoft. It serves as a compatibility layer that allows running native Linux binary executables in ELF format. There is a resource management vulnerability in Microsoft Windows Subsystem for Linux WSL...
KLA90878 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface, obtain sensitive information, cause denial of service. Below is a...
PT-2026-7341
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...
Microsoft Windows Subsystem for Linux 资源管理错误漏洞
Microsoft Windows Subsystem for Linux WSL is a Linux subsystem under Windows developed by Microsoft. It serves as a compatibility layer that allows running native Linux binary executables in ELF format. There is a resource management vulnerability in Microsoft Windows Subsystem for Linux WSL...
PT-2026-7346
Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...
CVE-2026-20827
Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to disclose information locally...
CVE-2026-20827
Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to disclose information locally...
CVE-2026-20920 Win32k Elevation of Privilege Vulnerability
...
CVE-2026-20826
Concurrent execution using shared resource with improper synchronization 'race condition' in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to elevate privileges locally...
PT-2026-2676
Name of the Vulnerable Software and Affected Versions Tablet Windows User Interface TWINUI Subsystem affected versions not specified Description A flaw exists due to concurrent execution using a shared resource with improper synchronization, creating a race condition within the Tablet Windows Use...
Windows WSL via Registry Persistence
This module will install a payload in WSL and execute it at user logon or system startup via the registry value in "CurrentVersion\Run" or "RunOnce" depending on privilege and selected method. The payload will be installed completely in registry. Staged payloads, like fetch payloads in linux X64...
Microsoft Windows Subsystem for Linux (WSL2) < 2.6.2 Remote Code Execution (November 2025)
The version of Microsoft Windows Subsystem for Linux WSL2 on the remote Windows host is prior to 2.6.2. It is, therefore, affected by a remote code execution vulnerability: - Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a...
CVE-2025-62220
Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network...
CVE-2025-62220
Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network...