Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

34312 matches found

CVE
CVEadded 2026/01/13 5:56 p.m.17 views

CVE-2026-20938

CVE-2026-20938 is a local elevation-of-privilege in Windows VBS Enclave caused by an untrusted pointer dereference. Affected: Windows 11 VBS Enclave implementations. Impact per sources: local privilege escalation with high confidentiality/integrity/availability impact (CVSS 7.8). Remediation: Mic...

7.8CVSS6.5AI score0.00483EPSS
Exploits0References1Affected Software3
ATTACKERKB
ATTACKERKBadded 2026/01/13 5:56 p.m.2 views

CVE-2026-20938

Untrusted pointer dereference in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

7.8CVSS5.5AI score0.00483EPSS
Exploits0References2Affected Software4
CVE
CVEadded 2026/01/13 5:56 p.m.50 views

CVE-2026-20857

CVE-2026-20857 affects the Windows Cloud Files Mini Filter Driver. The vulnerability is an untrusted pointer dereference that enables an authorized attacker to elevate privileges locally. Multiple Nessus/NVD/NCSC entries map this CVE to the January 2026 Microsoft security update KB5074109 (Window...

7.8CVSS6.5AI score0.0046EPSS
Exploits0References1Affected Software10
ATTACKERKB
ATTACKERKBadded 2026/01/13 5:56 p.m.3 views

CVE-2026-20857

Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.0046EPSS
Exploits0References2Affected Software13
ATTACKERKB
ATTACKERKBadded 2026/01/13 5:56 p.m.3 views

CVE-2026-20819

Untrusted pointer dereference in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to disclose information locally...

5.5CVSS5.4AI score0.00547EPSS
Exploits0References2Affected Software4
OSV
OSVadded 2026/01/13 4:16 p.m.9 views

AZL-74369 CVE-2025-71083 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Avoid NULL pointer deref for evicted BOs It is possible for a BO to exist that is not currently associated with a resource, e.g. because it has been evicted. When devcoredump tries to read the contents of all BOs for...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References1
NVD
NVDadded 2026/01/13 4:16 p.m.4 views

CVE-2025-68820

In the Linux kernel, the following vulnerability has been resolved: ext4: xattr: fix null pointer deref in ext4rawinode If ext4getinodeloc fails e.g. if it returns -EFSCORRUPTED, iloc.bh will remain set to NULL. Since ext4xattrinodedecrefall lacks error checking, this will lead to a null pointer...

0.00173EPSS
Exploits0References7
NVD
NVDadded 2026/01/13 4:16 p.m.4 views

CVE-2025-68818

In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path" This reverts commit 0367076b0817d5c75dfb83001ce7ce5c64d803a9. The commit being reverted added code to qla2x00abortallcmds to call sp-done without...

0.00173EPSS
Exploits0References7
OSV
OSVadded 2026/01/13 4:16 p.m.4 views

AZL-74459 CVE-2025-68797 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: char: applicom: fix NULL pointer dereference in acioctl Discovered by Atuin - Automated Vulnerability Discovery Engine. In acioctl, the validation of IndexCard and the check for a valid RamIO pointer are skipped when cmd is 6...

5.6AI score0.00173EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/01/13 4:16 p.m.4 views

CVE-2025-68820

In the Linux kernel, the following vulnerability has been resolved: ext4: xattr: fix null pointer deref in ext4rawinode If ext4getinodeloc fails e.g. if it returns -EFSCORRUPTED, iloc.bh will remain set to NULL. Since ext4xattrinodedecrefall lacks error checking, this will lead to a null pointer...

5.9AI score0.00173EPSS
Exploits0References36
UbuntuCve
UbuntuCveadded 2026/01/13 4:16 p.m.3 views

CVE-2025-68818

In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path" This reverts commit 0367076b0817d5c75dfb83001ce7ce5c64d803a9. The commit being reverted added code to qla2x00abortallcmds to call sp-done without...

5.9AI score0.00173EPSS
Exploits0References36
Microsoft CVE
Microsoft CVEadded 2026/01/13 4:0 p.m.6 views

Microsoft Word Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.00524EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/01/13 4:0 p.m.2 views

Microsoft Excel Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.00399EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/01/13 4:0 p.m.6 views

Microsoft Excel Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.3AI score0.00598EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/01/13 4:0 p.m.6 views

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

Untrusted pointer dereference in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00483EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/01/13 4:0 p.m.6 views

Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.01532EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/01/13 4:0 p.m.5 views

Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability

Untrusted pointer dereference in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to disclose information locally...

5.5CVSS6.5AI score0.00547EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/01/13 3:34 p.m.3 views

CVE-2025-71083

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Avoid NULL pointer deref for evicted BOs It is possible for a BO to exist that is not currently associated with a resource, e.g. because it has been evicted. When devcoredump tries to read the contents of all BOs for...

5.2AI score0.00114EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2026/01/13 3:34 p.m.21 views

CVE-2025-71083 drm/ttm: Avoid NULL pointer deref for evicted BOs

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Avoid NULL pointer deref for evicted BOs It is possible for a BO to exist that is not currently associated with a resource, e.g. because it has been evicted. When devcoredump tries to read the contents of all BOs for...

0.00114EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/01/13 3:29 p.m.5 views

CVE-2025-68820

In the Linux kernel, the following vulnerability has been resolved: ext4: xattr: fix null pointer deref in ext4rawinode If ext4getinodeloc fails e.g. if it returns -EFSCORRUPTED, iloc.bh will remain set to NULL. Since ext4xattrinodedecrefall lacks error checking, this will lead to a null pointer...

5.2AI score0.00173EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder