23 matches found
CVE-2026-6597
A weakness has been identified in langflow-ai langflow up to 1.8.3. Impacted is the function removeapikeys/hasapiterms of the file src/backend/base/langflow/api/utils/core.py of the component Flow Using API. This manipulation causes unprotected storage of credentials. The attack can be initiated...
CVE-2026-32164 Windows User Interface Core Elevation of Privilege Vulnerability
...
CVE-2026-32164 Windows User Interface Core Elevation of Privilege Vulnerability
...
CVE-2026-32163
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
CVE-2026-27911 Windows User Interface Core Elevation of Privilege Vulnerability
...
CVE-2026-27911 Windows User Interface Core Elevation of Privilege Vulnerability
...
CVE-2026-32165 Windows User Interface Core Elevation of Privilege Vulnerability
...
CVE-2026-32165 Windows User Interface Core Elevation of Privilege Vulnerability
...
CVE-2026-32165
Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
Windows User Interface Core Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
Windows User Interface Core Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
Windows User Interface Core Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
Windows User Interface Core Elevation of Privilege Vulnerability
Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
Microsoft Windows 竞争条件问题漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There are vulnerabilities related to the Microsoft Windows User Interface Core. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and versions are...
Microsoft Windows 资源管理错误漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There is a resource management vulnerability in the Microsoft Windows User Interface Core. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions a...
PT-2026-32834
Name of the Vulnerable Software and Affected Versions Windows User Interface Core affected versions not specified Description A use after free issue in Windows User Interface Core allows an authorized attacker to elevate privileges locally. Use after free is a condition where a program continues ...
PT-2026-32773
CVE-2026-27911 Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate pr… https://t.co/1EBHUgkLHF...
UBUNTU-CVE-2026-23296
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix refcount leak for tagsetrefcnt This leak will cause a hang when tearing down the SCSI host. For example, iscsid hangs with the following call trace: 130120.652718 scsiallocsdev: Allocation failure during SCSI...
SUSE CVE-2025-68224
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
ASB-A-436201996
In xfrmichangelink of xfrminterfacecore.c, there is a possible use after free due to a missing null check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...