CVE-2026-34329 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

...

CVE-2026-34329

CVE-2026-34329 is a heap-based buffer overflow in Windows Message Queuing (MSMQ) that could allow an unauthenticated attacker to execute code over an adjacent network. Public details in provided connected documents describe MSMQ as affected and classify the vulnerability as remote code execution;...

CVE-2026-34329 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

...

Windows Message Queuing (MSMQ) Elevation of Privilege Vulnerability

Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally...

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Message Queuing allows an unauthorized attacker to execute code over an adjacent network...

KB5087471: Windows Server 2012 R2 Security Update (May 2026)

The remote Windows host is missing security update 5087471. It is, therefore, affected by multiple vulnerabilities - Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network. CVE-2026-41089 - Heap-based buffer overflow in Windows Win32K - GRFX...

Microsoft Message Queuing 资源管理错误漏洞

Microsoft Message Queuing is a solution developed by Microsoft for implementing high-performance asynchronous and synchronous scenarios. There is a resource management vulnerability in Microsoft Message Queuing. The following products and versions are affected: Windows 11 Version 24H2 for...

Microsoft Message Queuing 安全漏洞

Microsoft Message Queuing is a solution developed by Microsoft for implementing high-performance asynchronous and synchronous scenarios. There are security vulnerabilities associated with Microsoft Message Queuing. The following products and versions are affected: Windows 10 Version 1809 for 32-b...

PT-2026-40149

Name of the Vulnerable Software and Affected Versions Windows Message Queuing affected versions not specified Description A heap-based buffer overflow in Windows Message Queuing allows an unauthorized attacker located on an adjacent network to execute arbitrary code. A heap-based buffer overflow...

PT-2026-40145

Name of the Vulnerable Software and Affected Versions Windows Message Queuing affected versions not specified Description A double free issue in Windows Message Queuing allows an authorized attacker to elevate privileges locally. A double free occurs when a program attempts to free the same memor...

KB5087470: Windows Server 2012 Security Update (May 2026)

The remote Windows host is missing security update 5087470. It is, therefore, affected by multiple vulnerabilities - Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network. CVE-2026-41089 - Heap-based buffer overflow in Windows Win32K - GRFX...

KB5089549: Windows 11 Version 24H2 / Windows 11 Version 25H2 Security Update (May 2026)

The remote Windows host is missing security update 5089549 or hotpatch 5089466. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network. CVE-2026-41096 - Heap-based buffer overflow ...

KB5087538: Windows 10 version 1809 / Windows Server 2019 Security Update (May 2026)

The remote Windows host is missing security update 5087538. It is, therefore, affected by multiple vulnerabilities - Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network. CVE-2026-41089 - Heap-based buffer overflow in Windows Win32K - GRFX...

KB5087544: Windows 10 version 21H2 / Windows 10 Version 22H2 Security Update (May 2026)

The remote Windows host is missing security update 5087544. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows Message Queuing allows an unauthorized attacker to execute code over an adjacent network. CVE-2026-34329 - Heap-based buffer overflow in Windo...

KB5089548: Windows 11 Version 26H1 Security Update (May 2026)

The remote Windows host is missing security update 5089548. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network. CVE-2026-41096 - Heap-based buffer overflow in Windows Win32K -...

SUSE CVE-2026-43220

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: serialize sequence allocation under concurrent TLB invalidations With concurrent TLB invalidations, completion wait randomly gets timed out because cmdsemval was incremented outside the IOMMU spinlock, allowing...

UBUNTU-CVE-2026-43446

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix runtime suspend deadlock when there is pending job The runtime suspend callback drains the running job workqueue before suspending the device. If a job is still executing and calls pmruntimeresumeandget, it can...

CVE-2026-43446 accel/amdxdna: Fix runtime suspend deadlock when there is pending job

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix runtime suspend deadlock when there is pending job The runtime suspend callback drains the running job workqueue before suspending the device. If a job is still executing and calls pmruntimeresumeandget, it can...

CVE-2026-43446

CVE-2026-43446 affects the Linux kernel in the accel/amdxdna driver. A runtime suspend deadlock could occur if a running job calls pm_runtime_resume_and_get() while the system is suspending; the deadlock arises between the runtime suspend path and the job execution flow. The fix moves pm_runtime_...

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to the lack of size limits applied to the Properties section during the decoding process. An attacker can cause excessive CPU and memory consumption by sending MQTT messages with...