2627 matches found
CVE-2026-58638
Missing cryptographic step in Windows Boot Loader allows an authorized attacker to bypass a security feature locally...
CVE-2026-58633
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally...
CVE-2026-58613
Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-58544
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally...
CVE-2026-58536
Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-58531
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB allows an authorized attacker to elevate privileges over a network...
CVE-2026-58529
Out-of-bounds read in Active Directory Federation Services AD FS allows an authorized attacker to disclose information over a network...
CVE-2026-57973
Time-of-check time-of-use toctou race condition in Windows Subsystem for Linux allows an authorized attacker to perform tampering locally...
CVE-2026-56643
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-56642
Stack-based buffer overflow in Microsoft Fabric Data Warehouse allows an authorized attacker to execute code over a network...
CVE-2026-56197
Improper neutralization of special elements used in a command 'command injection' in Windows Admin Center allows an authorized attacker to execute code over a network...
CVE-2026-56644
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-56183
Use after free in Windows MIDI Service Module allows an authorized attacker to elevate privileges locally...
CVE-2026-56182
Integer overflow or wraparound in Windows NTFS allows an authorized attacker to elevate privileges locally...
CVE-2026-56178
Time-of-check time-of-use toctou race condition in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally...
CVE-2026-56175
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to elevate privileges locally...
CVE-2026-55135
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...
CVE-2026-55051
Server-side request forgery ssrf in Microsoft Office SharePoint allows an authorized attacker to disclose information over a network...
CVE-2026-55034
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...
CVE-2026-55030
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...