Lucene search
+L

193568 matches found

NVD
NVD
added 3 days ago3 views

CVE-2026-50695

Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network...

7.5CVSS0.00813EPSS
Exploits0References1
NVD
NVD
added 3 days ago2 views

CVE-2026-50311

Improper access control in Windows Server allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00235EPSS
Exploits0References1
NVD
NVD
added 3 days ago3 views

CVE-2026-50298

Integer overflow or wraparound in Windows Spaceport.sys allows an unauthorized attacker to elevate privileges with a physical attack...

6.8CVSS0.00334EPSS
Exploits0References1
NVD
NVD
added 3 days ago4 views

CVE-2026-49799

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

6.5CVSS0.0079EPSS
Exploits0References1
NVD
NVD
added 3 days ago5 views

CVE-2026-49804

Heap-based buffer overflow in Windows USB Video Driver allows an unauthorized attacker to elevate privileges with a physical attack...

6.6CVSS0.00368EPSS
Exploits0References1
NVD
NVD
added 3 days ago3 views

CVE-2026-49787

Allocation of resources without limits or throttling in Windows HTTP.sys allows an unauthorized attacker to deny service over a network...

7.5CVSS0.00834EPSS
Exploits0References1
NVD
NVD
added 3 days ago6 views

CVE-2026-49168

Integer overflow or wraparound in Windows Storage Spaces Direct allows an unauthorized attacker to elevate privileges with a physical attack...

6.8CVSS0.00311EPSS
Exploits0References1
NVD
NVD
added 3 days ago4 views

CVE-2026-49162

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

7CVSS0.00204EPSS
Exploits0References1
NVD
NVD
added 3 days ago4 views

CVE-2026-45646

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network...

7.5CVSS0.00797EPSS
Exploits0References1
NVD
NVD
added 3 days ago2 views

CVE-2026-15702

A security vulnerability has been detected in tamagui up to 2.3.0. This affects the function updateConfig of the file code/core/web/src/config.ts. Such manipulation leads to improperly controlled modification of object prototype attributes. The attack may be performed from remote. Upgrading to...

6.5CVSS0.00337EPSS
Exploits0References8
CVE
CVE
added 3 days ago7 views

CVE-2026-50298

CVE-2026-50298 concerns Windows Spaceport.sys: an integer overflow/wraparound vulnerability in the kernel component that could allow an unauthenticated, physical attacker to achieve privilege escalation. Affected software is Windows kernel-space Spaceport.sys; impact is elevation of privileges wi...

6.8CVSS6.1AI score0.00334EPSS
Exploits0References1Affected Software12
CVE
CVE
added 3 days ago6 views

CVE-2026-49804

CVE-2026-49804 describes a heap-based buffer overflow in the Windows USB Video Driver that can allow an unauthorized attacker to elevate privileges via a physical attack. The vulnerability is characterized by a physical attack vector with low exploit complexity and the need for user interaction, ...

6.6CVSS6.2AI score0.00368EPSS
Exploits0References1Affected Software11
CVE
CVE
added 3 days ago5 views

CVE-2026-49791

CVE-2026-49791 affects Windows Routing and Remote Access Service (RRAS). The issue is an improper link resolution before file access (link following) that can allow an authorized, local attacker to elevate privileges. The vulnerability is triggered locally with low attack complexity and low privi...

7.1CVSS6.1AI score0.00278EPSS
Exploits0References1
CVE
CVE
added 3 days ago7 views

CVE-2026-45646

The provided records describe CVE-2026-45646 as a Denial of Service vulnerability in ASP.NET Core caused by allocation of resources without limits or throttling, enabling an unauthenticated attacker to disrupt services over the network. Concrete details in the connected documents include the affe...

7.5CVSS6.1AI score0.00797EPSS
Exploits0References1Affected Software2
ATTACKERKB
ATTACKERKB
added 3 days ago2 views

CVE-2026-50653

Loop with unreachable exit condition 'infinite loop' in Azure Active Directory allows an unauthorized attacker to deny service over a network...

7.5CVSS6.1AI score0.00797EPSS
Exploits0References2Affected Software7
CVE
CVE
added 3 days ago6 views

CVE-2026-57097

CVE-2026-57097 describes an Untrusted search path in Microsoft XML that allows a physical attacker to bypass a security feature. Affects Microsoft XML; impact is described as high for confidentiality, integrity, and availability with a physical attack requiring no user interaction. No exploit det...

6.4CVSS6.1AI score0.00248EPSS
Exploits0References1
CVE
CVE
added 3 days ago12 views

CVE-2026-54108

CVE-2026-54108 affects Microsoft SharePoint Server. An authorized attacker can influence a file name or path in SharePoint, enabling network-based spoofing. CVSS v3.1: 6.5 (MEDIUM), AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N. Root cause details are not provided in the supplied documents; no exploitation...

6.5CVSS6.1AI score0.00713EPSS
Exploits0References1Affected Software1
CVE
CVE
added 3 days ago9 views

CVE-2026-50506

CVE-2026-50506 concerns a Denial of Service vulnerability in ASP.NET Core caused by allocation of resources without limits or throttling, enabling an unauthenticated attacker to exhaust resources over the network. The NVD entry and CVE records describe this as affecting ASP.NET Core (and related ...

7.5CVSS6.1AI score0.00797EPSS
Exploits0References1
CVE
CVE
added 3 days ago24 views

CVE-2026-49172

The CVE-2026-49172 entry describes a heap-based buffer overflow in Windows FTP Service that allows an unauthenticated, network-based attacker to execute code remotely. Documents confirm the vulnerability exists in Windows FTP Service and enables remote code execution with network access and no re...

9.8CVSS6.3AI score0.00674EPSS
Exploits0References1
CVE
CVE
added 3 days ago6 views

CVE-2026-49168

CVE-2026-49168 is an elevation-of-privilege vulnerability in Windows Storage Spaces Direct caused by an integer overflow/wraparound. The issue, exploitable with physical access, allows an unauthenticated attacker to gain high-impact effects (confidentiality, integrity, and availability). CVSSv3.1...

6.8CVSS6.1AI score0.00311EPSS
Exploits0References1Affected Software11
Rows per page
Query Builder