293 matches found
PT-2026-42791
Improper input validation in the external authentication provider flow in Devolutions Server allows an unauthenticated remote attacker to redirect victims to an attacker-controlled domain via a crafted login link. This issue affects : Devolutions Server 2026.1.6.0 through 2026.1.16.0 Devolutions...
PT-2026-42794
Authorization bypass in the entry duplication feature in Devolutions Server allows an authenticated user with write access to any vault to copy documentation and attachments from an entry in a vault they cannot access via a crafted save request. This issue affects : Devolutions Server 2026.1.6.0...
Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit
Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following its public disclosure last week. The zero-day flaw, now tracked as CVE-2026-45585 , carries a CVSS score of 6.8. It has been described as a BitLocker security feature bypass. "Microsoft is...
Microsoft Windows BitLocker 命令注入漏洞
Microsoft Windows BitLocker is a security feature provided by Microsoft that ensures the recovery key is backed up and secure before it is activated. Microsoft Windows BitLocker has a command injection vulnerability, which stems from a flaw in the security function’s implementation. The following...
KLA91063 SB vulnerability in Microsoft Browser
A security feature bypass vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions. Original advisories CVE-2026-45585 Exploitation Public exploits exist for this vulnerability. Related products...
KB5089899 - Description of the security update for SQL Server 2025 CU4: May 12, 2026
KB5089899 - Description of the security update for SQL Server 2025 CU4: May 12, 2026 Applies To SQL Server 2025 on Windows all editions, SQL Server 2025 on Linux all editions Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update Ho...
May 12, 2026—KB5087539(OS Build 26100.32860)
May 12, 2026—KB5087539OS Build 26100.32860 This cumulative update for Windows Server 2025 KB5087539 , includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates,...
KB5091223 - Description of the security update for SQL Server 2025 GDR: May 12, 2026
KB5091223 - Description of the security update for SQL Server 2025 GDR: May 12, 2026 Applies To SQL Server 2025 on Windows all editions, SQL Server 2025 on Linux all editions Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update Mo...
Microsoft Windows Kernel 安全漏洞
The Microsoft Windows Kernel is the kernel of the Windows operating system developed by Microsoft Corporation. There are security vulnerabilities in the Microsoft Windows Kernel. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and versions are affecte...
Microsoft Windows Kernel 安全漏洞
The Microsoft Windows Kernel is the kernel of the Windows operating system developed by Microsoft Corporation. There are security vulnerabilities present in the Microsoft Windows Kernel. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and versions are...
Microsoft Windows DNS 安全漏洞
Microsoft Windows DNS is a domain name resolution service provided by Microsoft Corporation. The Domain Name System DNS is one of the industry-standard protocol suites that includes TCP/IP. Both DNS clients and DNS servers work together to provide name resolution services, mapping computer names ...
Microsoft Win32k 输入验证错误漏洞
Microsoft Win32k is a system file used for multi-user management in Windows by Microsoft Corporation. There is an input validation vulnerability present in Microsoft Win32k. The following products and versions are affected: Windows 10 Version 1809 for 32-bit systems, Windows 10 Version 1809 for...
Microsoft Win32k 竞争条件问题漏洞
Microsoft Win32k is a system file used by Microsoft for multi-user management in Windows. There are competitive conditions vulnerabilities associated with Microsoft Win32k. The following products and versions are affected: Windows Server 2019 Server Core installation, Windows Server 2022, Windows...
Microsoft Win32k 安全漏洞
Microsoft Win32k is a system file used by Microsoft for multi-user management in Windows operating systems. There are security vulnerabilities in Microsoft Win32k. Attackers can exploit these vulnerabilities to execute code remotely. The following products and versions are affected: Windows 11...
Microsoft Windows Common Log File System Driver 数字错误漏洞
The Microsoft Windows Common Log File System Driver is a high-performance, general-purpose log file system API provided by Microsoft. It allows specialized client applications to utilize this subsystem, enabling multiple clients to share it for optimized log access. The Microsoft Windows Common L...
Microsoft Windows 资源管理错误漏洞
Microsoft Windows is an operating system used on personal devices by the American company Microsoft. There is a resource management vulnerability in Microsoft Windows. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are affected: Windows...
Microsoft Message Queuing 安全漏洞
Microsoft Message Queuing is a solution developed by Microsoft for implementing high-performance asynchronous and synchronous scenarios. There are security vulnerabilities associated with Microsoft Message Queuing. The following products and versions are affected: Windows 10 Version 1809 for 32-b...
Microsoft Windows 安全漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There are security vulnerabilities in Microsoft Windows. Attackers can exploit these vulnerabilities to execute code remotely. The following products and versions are affected: Windows 10 Version...
Microsoft Lightweight Directory Access Protocol(LDAP) 代码问题漏洞
Microsoft Lightweight Directory Access Protocol LDAP is a directory service protocol developed by Microsoft Corporation. It operates at the layer above the TCP/IP stack. There are code-related vulnerabilities in the Microsoft Lightweight Directory Access Protocol LDAP. Attackers can exploit these...
Microsoft Windows Kernel Mode Drivers 资源管理错误漏洞
Microsoft Windows Kernel Mode Drivers are the kernel mode drivers of Windows from Microsoft. There is a resource management vulnerability in Microsoft Windows Kernel Mode Drivers. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are affected:...