214592 matches found
CVE-2026-48578
CVE-2026-48578 describes a protection mechanism failure in Windows Secure Boot that can allow an authorized attacker to bypass a security feature locally. The available data indicate a local attack vector with high impact on confidentiality and integrity (CVSS 3.1: AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H...
CVE-2026-48575
CVE-2026-48575 describes a protection mechanism failure in Windows Secure Boot that allows an authorized, local attacker to bypass a security feature. The vulnerability enables a local escalation path with high impact on confidentiality and integrity (base score 7.9; AV:L/AC:L/PR:H/UI:N/S:C/C:H/I...
CVE-2026-48576
CVE-2026-48576 is a Windows Secure Boot vulnerability described as a protection mechanism failure enabling a local attacker with high privileges to bypass a security feature. The available documents specify a local attack vector with low complexity and no user interaction, and a base CVSS 3.1 sco...
CVE-2026-48573
CVE-2026-48573 describes a protection mechanism failure in Windows Secure Boot allowing an authorized attacker to bypass a security feature locally. The NVD entry notes a local attack vector with high impact on confidentiality and integrity (C:H/I:H) and a CVSS v3.1 base score of 7.9. Connected d...
CVE-2026-48570
CVE-2026-48570 concerns a protection mechanism failure in Windows Secure Boot that could allow an authorized attacker with HIGH privileges to bypass a security feature locally (local attack, no user interaction). The CVSS 3.1 vector is AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N with a base score of 7.9 ...
CVE-2026-48566
CVE-2026-48566 is an information-disclosure vulnerability in the Windows DWM Core Library characterized by an out-of-bounds read. It can be exploited by an authorized attacker with local access to disclose information on the system. The CVSS 3.1 vector indicates Local attack, Low complexity, Priv...
CVE-2026-48566 Windows DWM Core Library Information Disclosure Vulnerability
...
CVE-2026-48566 Windows DWM Core Library Information Disclosure Vulnerability
...
CVE-2026-48568
CVE-2026-48568 concerns a protection mechanism failure in Windows Secure Boot that allows a local attacker to bypass a security feature. The connected sources indicate an in-scope vulnerability where an attacker with HIGH privileges and local access can bypass integrity and confidentiality protec...
CVE-2026-47652 Windows Hyper-V Remote Code Execution Vulnerability
...
CVE-2026-47652
The CVE-2026-47652 entry concerns a Windows Hyper-V component vulnerability described as an out-of-bounds read that can yield local code execution by an unauthorized attacker. Public sources indicate the flaw affects Windows Hyper-V, with an attack vector that is Local and requires High privilege...
CVE-2026-47652 Windows Hyper-V Remote Code Execution Vulnerability
...
CVE-2026-47648 Windows Storage Elevation of Privilege Vulnerability
...
CVE-2026-47648
CVE-2026-47648 — Windows Storage contains an untrusted search path vulnerability that enables a locally authenticated attacker to perform privilege escalation. The issue arises from a trusted component loading an untrusted search path, potentially elevating privileges with high impact (C/H/I/H/A/...
CVE-2026-47648 Windows Storage Elevation of Privilege Vulnerability
...
CVE-2026-45588
CVE-2026-45588 concerns a protection mechanism failure in Windows Secure Boot that allows an authorized attacker to bypass a security feature locally. The NVD/CVE entry describes a local attack with high impact on confidentiality and integrity and no availability impact, requiring high privileges...
CVE-2026-47291
The CVE-2026-47291 entry describes an integer overflow/ wraparound in Windows HTTP.sys that enables a remote attacker to execute code over the network. Affected software component: Windows HTTP.sys. Root cause: integer overflow/wraparound in the HTTP.sys processing path. Impact: unauthenticated n...
CVE-2026-47288 Windows Kerberos Key Distribution Center (KDC) Remote Code Execution
...
CVE-2026-47288 Windows Kerberos Key Distribution Center (KDC) Remote Code Execution
...
CVE-2026-47288
CVE-2026-47288 affects Windows Kerberos Key Distribution Center (KDC). The vulnerability is an integer overflow/wraparound in the Kerberos code, enabling an authorized attacker on an adjacent network to execute code. The CVE has a CVSSv3.1 score of 7.1 ( HIGH ) with attack vector Adjacent, high i...