CVE-2026-48565

Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally...

CVE-2026-45653

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

CVE-2026-45596

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

CVE-2026-42991

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

CVE-2026-42989

Improper link resolution before file access 'link following' in Winlogon allows an authorized attacker to elevate privileges locally...

CVE-2026-42912

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Telephony Service allows an authorized attacker to elevate privileges locally...

CVE-2026-42905

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

CVE-2026-33828

Trust boundary violation in Windows Attestation allows an authorized attacker to elevate privileges locally...

Exploit for Use After Free in Linux Linux_Kernel

Auditor CVE-2026-23111 Linux Kernel nftables UAF Este re...

CVE-2026-45601

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

CVE-2026-42916

Integer underflow wrap or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...

CVE-2026-42910

Out-of-bounds write in Windows Hotpatch Monitoring Service allows an authorized attacker to elevate privileges locally...

CVE-2026-44802

CVE-2026-44802 is a use-after-free in Windows DWM Core Library that enables a local privilege escalation by an authorized user. CVSS 3.1 base score 7.8 (High) with local attack vector, low attack complexity, and require low privileges with no user interaction; impact to confidentiality, integrity...

CVE-2026-42836

CVE-2026-42836: A race condition due to improper synchronization in the Windows Function Discovery Service (fdwsd.dll) enables a locally authenticated attacker to escalate privileges. The issue is described as a concurrency problem with a shared resource. Affected component: Function Discovery Se...

EUVD-2026-35557

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

CVE-2026-45597

The CVE-2026-45597 issue affects Windows UI Automation Manager (uiamanager.dll). A race condition arises from concurrent execution with improper synchronization on a shared resource, enabling a local, authorized attacker to elevate privileges. Documents confirm the vulnerability type and impact (...

CVE-2026-42828

CVE-2026-42828 describes a buffer over-read in the Windows Projected File System Filter Driver that allows an authorized attacker to elevate privileges locally . The vulnerability is documented with a CVSS v3.1 base score of 7.8 (High) and is assessed as a Local attack vector with Low attack comp...

CVE-2026-33828

CVE-2026-33828 affects Windows Device Health Attestation (DHA). The vulnerability is a trust boundary violation in Windows Attestation that allows an authorized local attacker to elevate privileges. CVSS v3.1 base metrics indicate high impact to confidentiality, integrity, and availability with l...

Microsoft Azure Network Adapter Elevation of Privilege Vulnerability

Use after free in Linux MANA Driver allows an authorized attacker to elevate privileges locally...

Microsoft Kinect Elevation of Privilege Vulnerability

Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges locally...