CVE-2026-21219

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...

Microsoft Inbox COM Objects Code Execution Vulnerability (CNVD-2025-25713)

Microsoft Inbox COM Objects is a built-in COM component of the Windows operating system from the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Inbox COM Objects, which can be exploited by an attacker to execute arbitrary code...

CVE-2025-58735

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...

CVE-2025-59282

Concurrent execution using shared resource with improper synchronization 'race condition' in Inbox COM Objects allows an unauthorized attacker to execute code locally...

EUVD-2025-34400

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...

CVE-2025-58738

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...

CVE-2025-58736

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...

CVE-2025-58735

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...

CVE-2025-58736

CVE-2025-58736 is a use-after-free in Windows Inbox COM Objects that enables local code execution by an attacker who can interact with the affected system. CVSS v3.1: AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H; Privileges: None, User Interaction: Required, with high impact on confidentiality/ integrity/...

CVE-2025-58733 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability

...

CVE-2025-58731

CVE-2025-58731 is an Inbox COM Objects use-after-free vulnerability. The connected EUVD entry ( inbox COM Objects ) and CVE records identify the issue as enabling local code execution by an unauthenticated attacker who can trigger the use-after-free condition. Public references point to Microsoft...

CVE-2025-58731 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability

...

CVE-2025-58731 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability

...

CVE-2025-58730

The CVE-2025-58730 entry is corroborated by connected sources as a local code-execution via a use-after-free in Inbox COM Objects. The KB/MSKB documents listed do not provide vendor/version specifics or a public fix; public details in EUVD-2025-34313/ NCSC-2025-0310 reiterate the issue abstractly...

CVE-2025-58730 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability

...

CVE-2025-59282 Internet Information Services (IIS) Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability

...

CVE-2025-58732 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability

...

PT-2025-42074

Name of the Vulnerable Software and Affected Versions Inbox COM Objects affected versions not specified Description A use-after-free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information about a...

PT-2025-42071

Name of the Vulnerable Software and Affected Versions versions prior to 2025-58735 Description A use-after-free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information about a newer version that...