Lucene search
K

23978 matches found

CVE
CVE
added yesterday8 views

CVE-2026-54998

CVE-2026-54998 describes an incorrect authorization in Microsoft Exchange Online that enables an authorized attacker to elevate privileges over a network. This vulnerability impacts Exchange Online’s authorization checks, allowing escalation of access from an existing authorized state. The CVSS 3...

8.8CVSS5.8AI score
Exploits0References1
CVE
CVE
added yesterday9 views

CVE-2026-26145

Technical details (affected product/component, root cause, impact, versions, or remediation) are not publicly provided in the supplied documents. Monitor updates from official sources for concrete information.

4.8CVSS5.8AI score
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-45499

Technical details for CVE-2026-45499 are not publicly available in the provided documents. Monitor for updates; current sources only reiterate the SSRF elevation in Azure OpenAI without specification of affected products, versions, or fixes.

9.9CVSS5.8AI score
Exploits0References1
CVE
CVE
added yesterday8 views

CVE-2026-57100

Technical details on affected products/versions, root cause, exploit scenarios, or mitigations are not publicly provided in the supplied documents. Monitor official sources for updates.

9.9CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2026/06/22 5:39 a.m.4 views

BIT-DOTNET-SDK-2026-35433 .NET Elevation of Privilege Vulnerability

Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally...

7.3CVSS5.8AI score0.00662EPSS
Exploits0References2
OSV
OSV
added 2026/06/22 5:39 a.m.3 views

BIT-DOTNET-2026-35433 .NET Elevation of Privilege Vulnerability

Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally...

7.3CVSS5.8AI score0.00662EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/19 8:29 p.m.17 views

CVE-2026-47645 Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability

...

8.8CVSS0.00408EPSS
Exploits0References1
CVE
CVE
added 2026/06/19 8:29 p.m.20 views

CVE-2026-47645

Summary: CVE-2026-47645 is an open redirect vulnerability in Microsoft 365 Copilot’s Business Chat that can lead to privilege escalation over a network. The issue is described across sources (NVD/MSRC/CVE records) as a url redirection to an untrusted site, with a CVSS v3.1 base score of 8.8 (HIGH...

8.8CVSS5.8AI score0.00408EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/19 8:29 p.m.37 views

CVE-2026-48582 Microsoft Exchange Online Elevation of Privilege Vulnerability

...

9.6CVSS0.00389EPSS
Exploits0References1
CVE
CVE
added 2026/06/19 8:29 p.m.64 views

CVE-2026-48582

This CVE affects Microsoft Exchange Online. Missing authorization could allow an attacker with low privileges and network access (no user interaction) to elevate privileges (impact: high confidentiality and integrity, no availability impact) per CVSS 3.1: AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N, base...

9.6CVSS5.8AI score0.00389EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/19 8:29 p.m.5 views

CVE-2026-48582 Microsoft Exchange Online Elevation of Privilege Vulnerability

...

9.6CVSS5.8AI score0.00389EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/19 8:27 p.m.15 views

CVE-2026-48584 Microsoft Azure Synapse Elevation of Privilege Vulnerability

...

9.9CVSS0.005EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/19 8:27 p.m.5 views

CVE-2026-48584 Microsoft Azure Synapse Elevation of Privilege Vulnerability

...

9.9CVSS5.8AI score0.005EPSS
Exploits0References1
CVE
CVE
added 2026/06/19 8:27 p.m.30 views

CVE-2026-48584

CVE-2026-48584 affects Microsoft Azure Synapse. An authorized attacker with low privileges and network access can execute with unnecessary privileges to elevate to higher privileges across the system, with potential impact to confidentiality, integrity and availability (CVSS 3.1: CRITICAL, AV:N/A...

9.9CVSS5.9AI score0.005EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/19 8:27 p.m.17 views

CVE-2026-45480 Azure Active Directory Elevation of Privilege Vulnerability

...

10CVSS0.00562EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/19 8:27 p.m.6 views

CVE-2026-45480 Azure Active Directory Elevation of Privilege Vulnerability

...

10CVSS5.8AI score0.00562EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/19 2:16 p.m.27 views

CVE-2016-20094 AnyDesk 2.5.0 Unquoted Service Path Elevation of Privilege

AnyDesk 2.5.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service installation. Attackers can insert malicious executables in the system root path that execute with elevated privileges during applicatio...

8.5CVSS0.00181EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/06/19 2:16 p.m.28 views

CVE-2016-20092 NetDrive 2.6.12 Unquoted Service Path Elevation of Privilege

NetDrive 2.6.12 contains an unquoted service path vulnerability in the Netdrive2ServiceNetdrive2 service that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can insert malicious executables in the system root path that will be executed during service startup or...

8.5CVSS0.0012EPSS
Exploits0References4
CVE
CVE
added 2026/06/19 2:16 p.m.12 views

CVE-2016-20087

Fortitude HTTP 1.0.4.0 contains an unquoted service path vulnerability that enables local privilege escalation by exploiting the service binary path. An attacker can place a malicious executable in the system root, which will run with SYSTEM privileges during service startup or system reboot. Aff...

8.5CVSS6.2AI score0.0012EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Samba

Netlogon RPC Elevation of Privilege Vulnerability...

8.1CVSS6.8AI score0.02559EPSS
Exploits0References2
Rows per page
Query Builder