562935 matches found
EUVD-2026-35526
Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
EUVD-2026-35635
Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized write...
EUVD-2026-35714
Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized write...
EUVD-2026-35698
Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...
EUVD-2026-35689
Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack...
EUVD-2026-35693
Improper access control in Office for Android allows an unauthorized attacker to perform spoofing locally...
EUVD-2026-35669
Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...
EUVD-2026-35668
Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...
EUVD-2026-35534
Improper access control in Windows Administrator Protection allows an authorized attacker to bypass a security feature locally...
EUVD-2026-35456
Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests...
EUVD-2026-35503
Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges locally...
EUVD-2026-35530
Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network...
EUVD-2026-35452
Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality...
EUVD-2026-35465
An information disclosure vulnerability in the NETGEAR Orbi satellites could allow a user connected to your network to gain administrator access to the Orbi router. The listed NETGEAR models are affected by this vulnerability. Orbi WiFi Systems without satellite devices are not impacted by this...
EUVD-2026-35463
Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality...
EUVD-2026-35448
Waves Central for macOS versions 13.0.9 through 16.5.5 contain a local privilege escalation vulnerability in the privileged helper service. The helper validates connecting XPC clients using the client process identifier PID to verify code-signing identity. Because process identifiers can be reuse...
EUVD-2026-35444
An OS command injection vulnerability in Ivanti EPMM before 12.9.0.1, 12.8.0.3 and 12.7.0.2 versions allows a remote authenticated attacker to execute arbitrary commands as root...
EUVD-2026-35443
A improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox Cloud 5.0.4 through 5.0.5, FortiSandbox PaaS 5.0.4 through 5.0.5 may...
EUVD-2026-35442
A improper access control vulnerability in Fortinet FortiPortal 7.4.0 through 7.4.7, FortiPortal 7.2.0 through 7.2.8, FortiPortal 7.0 all versions may allow attacker to improper access control via...
EUVD-2026-35447
Waves Central for macOS versions 13.0.9 through 16.5.5 contain a local privilege escalation vulnerability. A trusted XPC client component included with the product is signed with hardened runtime entitlements that permit dynamic library injection. A local attacker can set the DYLDINSERTLIBRARIES...