1321 matches found
EUVD-2026-30288
Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an attacker able to connect to a PostgreSQL AFUNIX socket to achieve sustained denial of service. If SSL and GSS are both disabled, an attacker can do the same via access to a PostgreSQL TCP socket. Versions before PostgreSQL 18....
EUVD-2026-29662
Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally...
CVE-2026-40405
Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network...
CVE-2026-40413 Windows TCP/IP Denial of Service Vulnerability
...
CVE-2026-40401 Windows TCP/IP Denial of Service Vulnerability
...
CVE-2026-40401
CVE-2026-40401 describes a null pointer dereference in Windows TCP/IP that can be exploited for local denial of service by an unauthorized attacker. The description in the sources states the vulnerability allows a local, unauthenticated denial of service, with a CVSS v3.1 base score of 7.1 (HIGH)...
CVE-2026-33837 Windows TCP/IP Local Elevation of Privilege Vulnerability
...
CVE-2026-40415 Windows TCP/IP Remote Code Execution Vulnerability
...
CVE-2026-40414 Windows TCP/IP Denial of Service Vulnerability
...
CVE-2026-40406
Technical details about CVE-2026-40406 are not publicly available in the provided documents; monitor for updates as additional specifics (affected products, root cause, fixes) may be released.
CVE-2026-40406 Windows TCP/IP Information Disclosure Vulnerability
...
CVE-2026-40405 Windows TCP/IP Denial of Service Vulnerability
...
CVE-2026-34351 Windows TCP/IP Elevation of Privilege Vulnerability
...
Windows TCP/IP Denial of Service Vulnerability
...
Windows TCP/IP Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
CVE-2026-6860
A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name, e.g. if the server is configured with a certificate accepting .example.com, any XYZ.example.com where xyz is a valid name can be used...
PT-2026-40219
Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network...
Microsoft Windows TCP/IP 竞争条件问题漏洞
Microsoft Windows TCP/IP is a component provided by Microsoft Corporation that offers TCP/IP configuration functions for Windows. There is a vulnerability related to race conditions in Microsoft Windows TCP/IP. Attackers can exploit this vulnerability to gain elevated privileges. The following...
CVE-2026-44997
OpenClaw before 2026.4.22 contains a security envelope constraint bypass vulnerability allowing restricted subagents to spawn ACP child sessions that fail to inherit depth, child-count limits, control scope, or target-agent restrictions. Attackers can exploit this by spawning child sessions that...
CVE-2026-44997 OpenClaw < 2026.4.22 - Security Envelope Constraint Bypass in ACP Child Sessions
OpenClaw before 2026.4.22 contains a security envelope constraint bypass vulnerability allowing restricted subagents to spawn ACP child sessions that fail to inherit depth, child-count limits, control scope, or target-agent restrictions. Attackers can exploit this by spawning child sessions that...