4826 matches found
OESA-2026-1969 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability was found in Open...
CVE-2026-6421
CVE-2026-6421 affects Mobatek MobaXterm Home Edition up to 26.1. The issue lies in an unspecified part of msimg32.dll, enabling an uncontrolled search path when a low-privilege local attack occurs. Exploitation is described as local with high complexity; CVSS 3.1/7.0 (HIGH) and CVSS 4.0/7.3 (HIGH...
CVE-2026-6421
A vulnerability has been found in Mobatek MobaXterm Home Edition up to 26.1. This affects an unknown part in the library msimg32.dll. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The attack is considered to have high complexity. It is indicated that...
PT-2026-33455
Name of the Vulnerable Software and Affected Versions libvips versions prior to 8.19 Description A heap-based buffer overflow exists in the nip2 Handler component within the im minpos vec function of the file libvips/deprecated/vips7compat.c. This issue occurs when the argument n is manipulated,...
CVE-2026-23670
Untrusted pointer dereference in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to bypass a security feature locally...
CVE-2026-33098
Use after free in Windows Container Isolation FS Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-32219
Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...
CVE-2026-32192
Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally...
CVE-2026-27926
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-26183
Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally...
CVE-2026-26160
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally...
EUVD-2026-22610
Untrusted pointer dereference in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...
EUVD-2026-22540
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally...
EUVD-2026-22553
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
EUVD-2026-22563
Improper privilege management in Microsoft Windows allows an authorized attacker to deny service locally...
EUVD-2026-22515
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SSDP Service allows an authorized attacker to elevate privileges locally...
EUVD-2026-22489
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SSDP Service allows an authorized attacker to elevate privileges locally...
EUVD-2026-22501
Double free in Windows Projected File System allows an authorized attacker to elevate privileges locally...
EUVD-2026-22497
Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally...
EUVD-2026-22473
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally...