Lucene search
+L

123 matches found

Kaspersky
Kaspersky
added 2026/04/14 12:0 a.m.14 views

KLA90980 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, spoof user interface, execute arbitrary code, cause denial of service, read local...

8CVSS7.1AI score0.64095EPSS
Exploits3References121
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.7 views

PT-2026-32777

Name of the Vulnerable Software and Affected Versions Windows Universal Plug and Play UPnP Device Host affected versions not specified Description A use after free issue in the Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally. Use after...

7.8CVSS6.1AI score0.00298EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.13 views

Microsoft Windows 安全漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There are security vulnerabilities in Microsoft Windows Universal Plug and Play UPnP Device Host. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and...

7.8CVSS5.8AI score0.0024EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.4 views

PT-2026-32787

🪟 CVE-2026-27925 is a “tiny” UPnP info leak, but Microsoft’s confidence rating says it’s not vibes. Translation: check your UPnP like it’s always on. Because Windows. https://t.co/9ZeUDJeewg WindowsSecurity InformationDisclosure UpnpDeviceHost CveTriage https://t.co/pALAQX9nwt...

6.5CVSS6.2AI score0.0036EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.4 views

PT-2026-32782

CVE-2026-27920 Untrusted pointer dereference in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally. https://t.co/hlxqisQ6zs...

7.8CVSS6.2AI score0.0024EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.7 views

PT-2026-32781

Name of the Vulnerable Software and Affected Versions Windows Universal Plug and Play UPnP Device Host affected versions not specified Description An untrusted pointer dereference in the Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally,...

7.8CVSS6.2AI score0.00298EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.6 views

PT-2026-32778

CVE-2026-27916 Use after free in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally. https://t.co/58w4XiQTfi...

7.8CVSS6.2AI score0.0024EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.5 views

PT-2026-32803

Name of the Vulnerable Software and Affected Versions Windows Universal Plug and Play UPnP Device Host affected versions not specified Description An untrusted pointer dereference in the Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00321EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.8 views

Microsoft Windows 资源管理错误漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. The Microsoft Windows Universal Plug and Play UPnP Device Host has a resource management vulnerability. Attackers can exploit this vulnerability to gain higher privileges. The following products a...

7.8CVSS5.8AI score0.00298EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-13683

Malware in sbrugna...

7.8CVSS7.3AI score0.0086EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-12230

Malware in sbrugna...

7.8CVSS7.7AI score0.00792EPSS
Exploits0References2
OSV
OSV
added 2025/07/08 5:15 p.m.4 views

CVE-2025-48821

Use after free in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges over an adjacent network...

7.1CVSS5.8AI score0.00435EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 4:57 p.m.53 views

CVE-2025-48819

Technical details about CVE-2025-48819 are not publicly provided in the supplied documents; no product/version/root-cause/impact information is included beyond the basic description. Monitor for official updates.

7.1CVSS6.5AI score0.00325EPSS
Exploits0References1Affected Software15
RedhatCVE
RedhatCVE
added 2025/05/22 4:20 p.m.7 views

CVE-2020-1430

An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows UPnP Device Host Elevation of Privilege Vulnerability'. This CVE ID is unique...

7.8CVSS6.8AI score0.00792EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/11 12:0 a.m.8 views

The vulnerability of the UPnP Device Host operating system in Windows allows a hacker to increase their privileges.

The vulnerability of the UPnP Device Host operating system in Windows relates to the use of insecure mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

7.5CVSS7.6AI score0.00746EPSS
Exploits0References2
OSV
OSV
added 2025/04/08 6:15 p.m.5 views

CVE-2025-27484

Sensitive data storage in improperly locked memory in Windows Universal Plug and Play UPnP Device Host allows an authorized attacker to elevate privileges over a network...

7.5CVSS5.8AI score0.00746EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 6:16 p.m.4 views

CVE-2025-21389

Uncontrolled resource consumption in Windows Universal Plug and Play UPnP Device Host allows an unauthorized attacker to deny service over a network...

7.5CVSS7.3AI score0.01902EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 6:15 p.m.5 views

CVE-2025-21300

Windows Universal Plug and Play UPnP Device Host Denial of Service Vulnerability...

7.5CVSS5.8AI score0.02482EPSS
Exploits0References1
OSV
OSV
added 2024/02/27 7:4 p.m.7 views

CVE-2021-46941

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: Do core softreset when switch mode According to the programming guide, to switch mode for DRD controller, the driver needs to do the following. To switch from device to host: 1. Reset controller with...

5.5CVSS7.3AI score
Exploits0References4
OSV
OSV
added 2021/03/11 4:15 p.m.3 views

CVE-2021-26899

Windows UPnP Device Host Elevation of Privilege Vulnerability...

7.8CVSS7.1AI score0.0086EPSS
Exploits0References1
Rows per page
Query Builder