Lucene search
+L

23779 matches found

Microsoft CVE
Microsoft CVE
added 5 days ago14 views

M365 Copilot for iOS Elevation of Privilege Vulnerability

Improper access control in Microsoft 365 Copilot for iOS allows an unauthorized attacker to elevate privileges over a network...

9.8CVSS6.1AI score0.00721EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago9 views

Windows SMB Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB allows an authorized attacker to elevate privileges over a network...

7.5CVSS6.2AI score0.00503EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago8 views

Microsoft SharePoint Elevation of Privilege Vulnerability

Missing authorization in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network...

8.8CVSS6.1AI score0.00526EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago8 views

Microsoft SQL Server Information Disclosure Vulnerability

Buffer over-read in SQL Server allows an authorized attacker to disclose information over a network...

6.5CVSS6.1AI score0.00715EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago9 views

Microsoft SharePoint Elevation of Privilege Vulnerability

Improper authorization in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network...

8.8CVSS6.1AI score0.0074EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago11 views

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...

9.8CVSS6.3AI score0.00812EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago8 views

Microsoft SharePoint Server Security Feature Bypass Vulnerability

Weak authentication in Microsoft Office SharePoint allows an unauthorized attacker to bypass a security feature over a network...

9.1CVSS6.1AI score0.00668EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago7 views

Microsoft SQL Server Elevation of Privilege Vulnerability

Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...

8.8CVSS6.1AI score0.00921EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago6 views

Windows Remote Desktop Services Elevation of Privilege Vulnerability

Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges over a network...

8.8CVSS6.1AI score0.00653EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 5 days ago9 views

Windows Admin Center (WAC) Remote Code Execution Vulnerability

Relative path traversal in Windows Admin Center allows an authorized attacker to execute code over a network...

8.8CVSS6.2AI score0.00954EPSS
Exploits0
Nuclei
Nuclei
added 5 days ago208 views

Oracle WebLogic Server - Remote Code Execution

Oracle WebLogic Server Oracle Fusion Middleware component: WLS Core Components is susceptible to a remote code execution vulnerability. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 2.2.1.3.0 and 12.2.1.4.0. This easily exploitable vulnerability could allow unauthenticated...

9.8CVSS7.5AI score0.93168EPSS
Exploits18References5
Positive Technologies
Positive Technologies
added 5 days ago6 views

PT-2026-58197

Name of the Vulnerable Software and Affected Versions Azure Spring Apps affected versions not specified Description Improper authentication allows an authorized attacker to elevate privileges over a network. Recommendations At the moment, there is no information about a newer version that contain...

8.2CVSS6.1AI score0.00472EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 5 days ago9 views

PT-2026-58461

Name of the Vulnerable Software and Affected Versions Microsoft Windows DNS affected versions not specified Description A use after free flaw in Microsoft Windows DNS allows an unauthorized attacker to elevate privileges over a network. Use after free is a memory corruption issue that occurs when...

8.1CVSS6AI score0.00674EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 5 days ago12 views

PT-2026-58804

Name of the Vulnerable Software and Affected Versions .NET affected versions not specified Description Incorrect authorization allows an unauthorized attacker to bypass a security feature over a network without requiring a login or user interaction. Recommendations At the moment, there is no...

8.2CVSS6.1AI score0.00436EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 5 days ago8 views

PT-2026-58351

Name of the Vulnerable Software and Affected Versions Windows Remote Desktop Services affected versions not specified Description A use after free condition in Windows Remote Desktop Services allows an authorized attacker to elevate privileges over a network. Use after free is a memory corruption...

8.8CVSS6.3AI score0.00653EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 5 days ago8 views

PT-2026-58505

Name of the Vulnerable Software and Affected Versions Windows DHCP Server affected versions not specified Description A double free issue exists in the Windows DHCP Server, which could allow an authorized attacker to execute arbitrary code over a network. A double free occurs when the program...

7.5CVSS6.3AI score0.00618EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 5 days ago10 views

PT-2026-58408

Name of the Vulnerable Software and Affected Versions Windows Kernel affected versions not specified Description An out-of-bounds read in the Windows Kernel allows an unauthorized attacker to disclose information over a network. This issue enables remote data leaks without requiring a login...

8.2CVSS6.1AI score0.00785EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 5 days ago7 views

PT-2026-58609

Name of the Vulnerable Software and Affected Versions Windows Network File System affected versions not specified Description A heap-based buffer overflow occurs in the Windows Network File System. This issue allows an authorized attacker to elevate privileges over a network. A heap-based buffer...

8.8CVSS6.2AI score0.00851EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 5 days ago23 views

PT-2026-58525

Name of the Vulnerable Software and Affected Versions Microsoft Office SharePoint affected versions not specified Description Improper neutralization of input during web page generation leads to cross-site scripting, which allows an authorized attacker to perform spoofing over a network...

5.4CVSS6AI score0.00335EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 5 days ago8 views

PT-2026-58556

Name of the Vulnerable Software and Affected Versions Microsoft Office SharePoint affected versions not specified Description Missing authorization allows an authorized attacker to elevate privileges over a network, which enables them to affect the system. Recommendations At the moment, there is ...

8.8CVSS6.1AI score0.00526EPSS
Exploits0References4
Rows per page
Query Builder