5024 matches found
CVE-2026-35417
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
CVE-2026-34334
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
EUVD-2026-29708
Improper access control in Azure Logic Apps allows an authorized attacker to elevate privileges over a network...
EUVD-2026-29658
Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally...
EUVD-2026-29675
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
EUVD-2026-29651
Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally...
EUVD-2026-29581
Improper access control in Windows Event Logging Service allows an authorized attacker to elevate privileges locally...
EUVD-2026-29579
Improper privilege management in Microsoft Dynamics 365 Customer Insights allows an authorized attacker to elevate privileges over a network...
EUVD-2026-29603
Access of resource using incompatible type 'type confusion' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
EUVD-2026-29589
Integer overflow or wraparound in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
EUVD-2026-29570
Double free in Windows Rich Text Edit Control allows an authorized attacker to elevate privileges locally...
CVE-2026-41103
Incorrect implementation of authentication algorithm in Microsoft SSO Plugin for Jira & Confluence allows an unauthorized attacker to elevate privileges over a network...
CVE-2026-40420
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
CVE-2026-40399
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
CVE-2026-34351
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
CVE-2026-34345
Access of resource using incompatible type 'type confusion' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
CVE-2026-34334
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
CVE-2026-33837
Heap-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
CVE-2026-32204
External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally...
EUVD-2026-29696
Session fixation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network...