7107 matches found
CVE-2026-58543
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges with a physical attack...
CVE-2026-58547
Heap-based buffer overflow in Universal Plug and Play upnp.dll allows an authorized attacker to elevate privileges locally...
CVE-2026-58528
Out-of-bounds read in Windows USB Audio Class driver usbaudio.sys allows an unauthorized attacker to disclose information with a physical attack...
CVE-2026-50674
Use after free in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-50498
Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...
CVE-2026-50455
Use of uninitialized resource in Universal Plug and Play upnp.dll allows an authorized attacker to disclose information locally...
CVE-2026-50321
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-49806 Windows USB Print Driver Elevation of Privilege Vulnerability
...
CVE-2026-49790 Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
...
CVE-2026-54111 Universal Print Management Service Elevation of Privilege Vulnerability
...
CVE-2026-15628
creationtimestamp| type| source ---|---|--- 2026-07-14 05:52:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqljbsldb52l...
CVE-2026-57782
Missing Authorization vulnerability in PressTigers Universal Clocks universal-clocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Universal Clocks: from n/a through = 1.2.0...
CVE-2026-57782 WordPress Universal Clocks plugin <= 1.2.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in PressTigers Universal Clocks universal-clocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Universal Clocks: from n/a through = 1.2.0...
CVE-2026-57782
CVE-2026-57782 concerns the WordPress plugin Universal Clocks (
CVE-2026-10668
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2026-39246
creationtimestamp| type| source ---|---|--- 2026-07-11 00:31:42+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdfxmi2yn2s...
FTP Fetch, Windows Upload/Execute, Reverse TCP Stager with UUID Support
Fetch and execute an x86 payload from an FTP server. Uploads an executable and runs it staged. Connect back to the attacker with UUID Support Module Options msf use payload/cmd/windows/ftp/x86/upexec/reversetcpuuid msf payloadreversetcpuuid show actions ...actions... msf payloadreversetcpuuid set...
FTP Fetch, Reverse TCP Stager with UUID Support (Windows x64)
Fetch and execute an x64 payload from an FTP server. Connect back to the attacker with UUID Support Windows x64 Module Options msf use payload/cmd/windows/ftp/x64/meterpreter/reversetcpuuid msf payloadreversetcpuuid show actions ...actions... msf payloadreversetcpuuid set ACTION msf...
Malicious code in stella-coder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0c3ed879ef15a68d537ad7b6ddb59508aba58eee49c8ca19b916ef59a0c2da6 stella-cli/telegram-bot.mjs hardcodes a Telegram bot API token BOTTOKEN = "8923551485:AAFw4wG8ZwOtp5rzFsnguxhu4AH-2ebSi0" that is controlled by the...
CVE-2026-56690
creationtimestamp| type| source ---|---|--- 2026-07-10 12:32:05+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mqc5qu5luq2o 2026-07-10 12:53:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqc6wpo2tm2i 2026-07-10 16:49:16+00:00| seen|...