CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.8CVSS6.5AI score0.00288EPSS

EUVD-2026-2161

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Management Services allows an authorized attacker to elevate privileges locally...

5.5CVSS5.9AI score0.00614EPSS

EUVD-2026-2147

Exposure of sensitive information to an unauthorized actor in Windows Management Services allows an authorized attacker to disclose information locally...

EUVD-2026-2102

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...

7CVSS7AI score0.0034EPSS

7.4CVSS6.5AI score0.00307EPSS

EUVD-2026-2165

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows WalletService allows an unauthorized attacker to elevate privileges locally...

7.8CVSS6.4AI score0.03323EPSS

EUVD-2026-2169

Improper access control in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...

EUVD•added 2026/01/13 5:56 p.m.•2 views

EUVD-2026-2119

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS6.9AI score0.17948EPSS

7.8CVSS6.8AI score0.00399EPSS

EUVD-2026-2104

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

EUVD•added 2026/01/13 5:56 p.m.•1 views

EUVD-2026-2140

Untrusted search path in Microsoft Office allows an unauthorized attacker to execute code locally...

7CVSS6.8AI score0.00628EPSS

EUVD•added 2026/01/13 5:56 p.m.•2 views

EUVD-2026-2127

Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally...

7.8CVSS6.5AI score0.00297EPSS

7.5CVSS6.5AI score0.00784EPSS

EUVD-2026-2136

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB Server allows an authorized attacker to elevate privileges over a network...

7.8CVSS6.9AI score0.00532EPSS

EUVD-2026-2164

Heap-based buffer overflow in Connected Devices Platform Service Cdpsvc allows an authorized attacker to elevate privileges locally...

7.8CVSS6.4AI score0.0046EPSS

EUVD-2026-2174

Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

7.7CVSS6.4AI score0.00482EPSS

EUVD-2026-2182

Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally...

EUVD•added 2026/01/13 5:56 p.m.•2 views

EUVD-2026-2146

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to perform spoofing over a network...

6.5CVSS6AI score0.013EPSS

7.8CVSS7.3AI score0.0066EPSS

EUVD-2026-2180

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally...

5.5CVSS6AI score0.00535EPSS

EUVD-2026-2157

Out-of-bounds read in Capability Access Management Service camsvc allows an authorized attacker to disclose information locally...

5.5CVSS6AI score0.00535EPSS

EUVD-2026-2193

Out-of-bounds read in Windows TPM allows an authorized attacker to disclose information locally...

EUVD•added 2026/01/13 5:56 p.m.•6 views

EUVD-2026-2212

Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to disclose information locally...

5.5CVSS5.9AI score0.00633EPSS

EUVD•added 2026/01/13 5:56 p.m.•8 views

EUVD-2026-2202

Out-of-bounds read in Windows Internet Connection Sharing ICS allows an unauthorized attacker to disclose information with a physical attack...

4.6CVSS5.7AI score0.0062EPSS