Lucene search
K

292 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.4 views

CVE-2026-21237

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7CVSS5.7AI score0.00261EPSS
Exploits0References2Affected Software11
Vulnrichment
Vulnrichment
added 2026/02/10 5:51 p.m.5 views

CVE-2026-21242 Windows Subsystem for Linux Elevation of Privilege Vulnerability

...

7CVSS5.1AI score0.0034EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.3 views

CVE-2026-21242

Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7CVSS5.5AI score0.0034EPSS
Exploits0References2Affected Software11
CVE
CVE
added 2026/02/10 5:51 p.m.37 views

CVE-2026-21242

CVE-2026-21242 concerns a use-after-free vulnerability in Windows Subsystem for Linux. The issue allows an authorized local attacker to elevate privileges, as indicated by the CVSS 3.1 metrics (AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H) with a base score of 7.0 (HIGH). Affected components and exact ver...

7CVSS5.5AI score0.0034EPSS
Exploits0References1Affected Software8
Microsoft CVE
Microsoft CVE
added 2026/02/10 4:0 p.m.7 views

Windows Subsystem for Linux Elevation of Privilege Vulnerability

Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7CVSS5.5AI score0.0034EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/02/10 4:0 p.m.5 views

Windows Subsystem for Linux Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00261EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.7 views

Microsoft Windows Subsystem for Linux 资源管理错误漏洞

Microsoft Windows Subsystem for Linux WSL is a Linux subsystem under Windows developed by Microsoft. It serves as a compatibility layer that allows running native Linux binary executables in ELF format. There is a resource management vulnerability in Microsoft Windows Subsystem for Linux WSL...

7CVSS5.8AI score0.0034EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2026/02/10 12:0 a.m.9 views

KLA90878 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface, obtain sensitive information, cause denial of service. Below is a...

8.8CVSS6.5AI score0.25835EPSS
Exploits9References38
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.4 views

PT-2026-7341

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7CVSS5.7AI score0.00261EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.7 views

Microsoft Windows Subsystem for Linux 资源管理错误漏洞

Microsoft Windows Subsystem for Linux WSL is a Linux subsystem under Windows developed by Microsoft. It serves as a compatibility layer that allows running native Linux binary executables in ELF format. There is a resource management vulnerability in Microsoft Windows Subsystem for Linux WSL...

7CVSS5.8AI score0.00261EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.7 views

PT-2026-7346

Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

7CVSS5.5AI score0.0034EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/14 6:22 p.m.5 views

CVE-2026-20827

Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to disclose information locally...

5.5CVSS6.4AI score0.00633EPSS
Exploits0References1
NVD
NVD
added 2026/01/13 6:16 p.m.6 views

CVE-2026-20827

Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to disclose information locally...

5.5CVSS0.00633EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/13 5:56 p.m.1 views

CVE-2026-20920 Win32k Elevation of Privilege Vulnerability

...

7.8CVSS6.6AI score0.00475EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/13 5:56 p.m.4 views

CVE-2026-20826

Concurrent execution using shared resource with improper synchronization 'race condition' in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00295EPSS
Exploits0References2Affected Software16
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.4 views

PT-2026-2676

Name of the Vulnerable Software and Affected Versions Tablet Windows User Interface TWINUI Subsystem affected versions not specified Description A flaw exists due to concurrent execution using a shared resource with improper synchronization, creating a race condition within the Tablet Windows Use...

7.8CVSS6.4AI score0.00295EPSS
Exploits0References7
Metasploit
Metasploit
added 2025/11/20 6:58 p.m.583 views

Windows WSL via Registry Persistence

This module will install a payload in WSL and execute it at user logon or system startup via the registry value in "CurrentVersion\Run" or "RunOnce" depending on privilege and selected method. The payload will be installed completely in registry. Staged payloads, like fetch payloads in linux X64...

5.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/14 12:0 a.m.6 views

Microsoft Windows Subsystem for Linux (WSL2) < 2.6.2 Remote Code Execution (November 2025)

The version of Microsoft Windows Subsystem for Linux WSL2 on the remote Windows host is prior to 2.6.2. It is, therefore, affected by a remote code execution vulnerability: - Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a...

8.8CVSS7.2AI score0.00665EPSS
Exploits0References2
NVD
NVD
added 2025/11/11 6:15 p.m.4 views

CVE-2025-62220

Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network...

8.8CVSS0.00665EPSS
Exploits0References1
OSV
OSV
added 2025/11/11 6:15 p.m.7 views

CVE-2025-62220

Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network...

8.8CVSS7.7AI score0.00665EPSS
Exploits0References1
Rows per page
Query Builder