Lucene search
K

4863 matches found

RedhatCVE
RedhatCVE
added 2026/06/10 9:0 p.m.12 views

CVE-2026-42983

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00286EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:0 p.m.9 views

CVE-2026-42978

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS5.6AI score0.00204EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2026/06/10 8:57 p.m.6 views

dotnet: .NET: Local file tampering via link following vulnerability

A flaw was found in .NET's System.Formats.Tar library. When extracting a specially crafted TAR archive containing symbolic links, the TarFile.ExtractToDirectory method may incorrectly follow those links and write files outside the intended extraction directory. An attacker could exploit this issu...

6.2CVSS5.8AI score0.00388EPSS
Exploits0References5
CVE
CVE
added 2026/06/10 8:40 p.m.30 views

CVE-2026-0268

Prisma Access Agent for Linux contains a local authentication bypass that enables a local attacker to route traffic outside the VPN tunnel. The issue is limited to Linux; Windows, macOS, iOS, Android, and ChromeOS variants are not affected. The CVE entry notes a local attack vector with low privi...

6.9CVSS5.5AI score0.00115EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 6:31 p.m.67 views

EUVD-2026-35527

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00267EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/09 6:30 p.m.16 views

EUVD-2026-35657

Trust boundary violation in Windows Attestation allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.0031EPSS
Exploits0References2
NVD
NVD
added 2026/06/09 5:17 p.m.8 views

CVE-2026-48583

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.16 views

CVE-2026-45476

Use after free in Linux MANA Driver allows an authorized attacker to elevate privileges locally...

8.2CVSS0.00324EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.11 views

CVE-2026-44811

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.10 views

CVE-2026-42902

Improper authorization in Microsoft PowerToys allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00291EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:6 p.m.11 views

EUVD-2026-35761

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00267EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:6 p.m.50 views

CVE-2026-42983

CVE-2026-42983 is a Windows vulnerability described across multiple sources as a use-after-free in the DWM Core Library that allows an authorized, local attacker to elevate privileges. The issue is identified consistently in Microsoft’s MSRC page and NVD records; no public exploit details or defa...

7.8CVSS5.4AI score0.00286EPSS
Exploits0References1Affected Software10
CVE
CVE
added 2026/06/09 5:6 p.m.31 views

CVE-2026-44811

CVE-2026-44811 refers to a use-after-free in the Windows DWM Core Library that enables a locally authenticated attacker to elevate privileges. Confirmed across multiple sources (NVD/MSRC/CVE listings). The vulnerability is described as a local, high-impact elevation of privilege with a CVSS v3.1 ...

7.8CVSS7.2AI score0.00267EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/06/09 5:6 p.m.30 views

CVE-2026-44805

CVE-2026-44805: Use-after-free in Windows Network Controller (NC) Host Agent enables an authorized local attacker to cause denial of service. Affected component is the Windows Network Controller Host Agent; underlying cause is use-after-free. CVSSv3.1 base score 5.5 (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I...

5.5CVSS5.5AI score0.00356EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2026/06/09 5:6 p.m.54 views

CVE-2026-42977

CVE-2026-42977 describes a race condition in Windows Push Notifications caused by improper synchronization of a shared resource. This vulnerability enables an authorized, local attacker to elevate privileges. The CVSS 3.1 base score is 7.8 (HIGH) with Local attack vector, high complexity, and req...

7.8CVSS5.6AI score0.00185EPSS
Exploits0References1Affected Software10
CVE
CVE
added 2026/06/09 5:6 p.m.29 views

CVE-2026-42916

The CVE-2026-42916 entry describes an Integer underflow in the Windows NT OS Kernel that enables local privilege escalation for an authorized attacker. Affected: Windows NT OS Kernel (kernel-level component). Root cause: wrap/underflow during arithmetic in the kernel. Impact: high across confiden...

7.8CVSS7AI score0.00326EPSS
Exploits0References1Affected Software13
EUVD
EUVD
added 2026/06/09 5:5 p.m.19 views

EUVD-2026-35569

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00251EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:5 p.m.30 views

CVE-2026-45637

CVE-2026-45637 is a use-after-free vulnerability in Windows DWM Core Library that permits a locally authenticated attacker to achieve elevation of privileges. The underlying flaw is a use-after-free condition in the DWM Core Library, enabling an attacker with low privileges and no user interactio...

7.8CVSS5.4AI score0.00286EPSS
Exploits0References1Affected Software10
EUVD
EUVD
added 2026/06/09 5:5 p.m.10 views

EUVD-2026-35561

Access of resource using incompatible type 'type confusion' in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00286EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:5 p.m.10 views

EUVD-2026-35547

Improper limitation of a pathname to a restricted directory 'path traversal' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

8.4CVSS5.4AI score0.00345EPSS
Exploits0References1
Rows per page
Query Builder