125636 matches found
CVE-2026-45639
Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network...
CVE-2026-42915
Incorrect calculation of buffer size in Windows TCP/IP allows an authorized attacker to deny service over an adjacent network...
CVE-2026-42767
Issue summary: An attacker-controlled CMP Certificate Management Protocol server could trigger a NULL pointer dereference in a CMP client application. Impact summary: A NULL pointer dereference causes a crash of the application and a Denial of Service. An attacker controlling a CMP server or acti...
ALPINE-CVE-2026-42769
Issue Summary: An error in the callback used to verify the certificate provided in a Root CA key update Certificate Management Protocol CMP message response rendered the certificate validation ineffectual, which could lead to escalation of credentials from the Registration Authority RA level to t...
CVE-2026-35188
Issue summary: A malicious server can exploit TLS OCSP stapling by delivering a crafted response through the statusrequest extension, triggering a double-free in the client's certificate verification path. Impact summary: Successful exploitation allows an attacker to corrupt heap memory via a...
CVE-2026-34183
Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATHCHALLENGE frames. Impact summary: A malicious remote peer can cause an unbounded memory allocation which can lead to an abnormal termination of the application acting as a QU...
MAL-2026-5425 Malicious code in @oplus/obus-web-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 956ecc19633177f7ef9b458e6407ffbba6c8366688249c07bfd7f3c8e85c17a9 On npm install, the package's scripts/postinstall.js collects the installer's username os.userInfo, hostname os.hostname, current working directory...
CVE-2026-42915 Windows TCP/IP Denial of Service Vulnerability
...
CVE-2026-42915 Windows TCP/IP Denial of Service Vulnerability
...
EUVD-2026-35727
Incorrect calculation of buffer size in Windows TCP/IP allows an authorized attacker to deny service over an adjacent network...
CVE-2026-42908 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
...
CVE-2026-42908 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
...
EUVD-2026-35588
Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network...
CVE-2026-45608 Windows DHCP Client Information Disclosure Vulnerability
...
CVE-2026-45602 Windows Dynamic Host Configuration Protocol (DHCP) Tampering Vulnerability
...
CVE-2026-45602
Technical details (affected product versions, root cause, exploit specifics, and remediation) are not publicly available in the provided documents. Monitor for updates from NVD and CVE List for CVE-2026-45602.
CVE-2026-50508
CVE-2026-50508 describes exposure of sensitive information in Windows NTLM, enabling an unauthorized attacker to perform spoofing over a network. CVSSv3.1 shows network access, low attack complexity, no privileges required, but user interaction required, with Confidentiality impact HIGH. Document...
CVE-2026-45639 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
...
CVE-2026-45639 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
...
CVE-2026-42769 Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
Issue Summary: An error in the callback used to verify the certificate provided in a Root CA key update Certificate Management Protocol CMP message response rendered the certificate validation ineffectual, which could lead to escalation of credentials from the Registration Authority RA level to t...