15303 matches found
CVE-2026-57087
CVE-2026-57087 is a Windows Media Foundation remote code execution vulnerability caused by a heap-based buffer overflow in Windows Media Foundation. An unauthenticated attacker could trigger code execution over a network. Public sources confirm the flaw affects Windows Media/Media Foundation comp...
CVE-2026-57094
CVE-2026-57094 is a remote-code-execution vulnerability in Microsoft Windows Media Foundation caused by a heap-based buffer overflow. It affects Windows Media Foundation components and can be exploited over a network to run arbitrary code. Public details confirm the vulnerability as a network-att...
CVE-2026-54115 Windows Message Queuing (MSMQ) Elevation of Privilege Vulnerability
...
CVE-2026-54993 Microsoft Windows Media Foundation Remote Code Execution Vulnerability
...
Windows GDI+ Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network...
DNS Client Tampering Vulnerability
Improper access control in Microsoft Windows DNS allows an authorized attacker to perform tampering locally...
[SECURITY] Fedora 43 Update: freerdp-3.27.1-1.fc43
The xfreerdp & wlfreerdp Remote Desktop Protocol RDP clients from the FreeR DP project. xfreerdp & wlfreerdp can connect to RDP servers such as Microsoft Windows machines, xrdp and VirtualBox...
CVE-2026-45656
Protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feature locally...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
CVE-2026-33829 - Security Vulnerability Quick Usage ba...
microsoft windows kerberos 缓冲区错误漏洞
Microsoft Windows Kerberos is a software developed by Microsoft for authentication in network clusters. As a network authentication protocol, its primary goal is to provide robust authentication services for client/server applications through a key system. There is a buffer error vulnerability...
Microsoft Windows Narrator Braille 权限许可和访问控制问题漏洞
Microsoft Windows is an operating system used on personal devices by the American company Microsoft. There are code-related vulnerabilities in Microsoft Windows Narrator Braille. Attackers can exploit these vulnerabilities to gain higher privileges...
Microsoft Windows DNS 缓冲区错误漏洞
Microsoft Windows DNS is a domain name resolution service provided by Microsoft Corporation in the United States. The Domain Name System DNS is one of the industry-standard protocol suites that includes TCP/IP. Both DNS clients and DNS servers work together to provide name resolution services,...
Security Bulletin: IBM Sterling Connect:Direct for Microsoft Windows is vulnerable to issues in Jetty
Summary There are vulnerabilities in Jetty used by IBM Sterling Connect:Direct for Microsoft Windows. IBM Sterling Connect:Direct for Microsoft Windows has addressed the applicable CVEs CVE-2025-11143, CVE-2026-2332. Vulnerability Details CVEID:CVE-2025-11143 DESCRIPTION: The Jetty URI parser has...
CVE-2026-32996
This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation...
CVE-2026-32996
This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation...
CVE-2026-32996
This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation...
PT-2026-44174
Name of the Vulnerable Software and Affected Versions Veeam Agent for Microsoft Windows affected versions not specified Description An issue in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation, which occurs when a user with limited permissions can gain higher-level access o...
EUVD-2026-29684
Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network...
CVE-2026-34339
Technical details about CVE-2026-34339 (Windows LDAP denial of service) are not publicly available in the provided connected documents. Monitor for updates from Microsoft/NVD for affected products, vectors, and fixes.
CVE-2026-41096
Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network...