133 matches found
Microsoft Power Apps < 3.26032.10.0 Security Feature Bypass (April 2026)
The Windows 'Microsoft Power Apps' app installed on the remote host is prior to version 3.26032.10.0. It is, therefore, affected by a security feature bypass vulnerability: - Improper neutralization of escape, meta, or control sequences in Microsoft Power Apps allows an authorized attacker to...
Microsoft Windows App < 2.0.1070.0 RCE (April 2026)
The Windows App Client for Windows Desktop formerly known as Remote Desktop Client installed on the remote host is prior to 2.0.1070.0. It is, therefore, affected by a remote code execution vulnerability: - Use after free in Remote Desktop Client allows an unauthorized attacker to execute code ov...
EUVD-2026-10579
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
EUVD-2026-10580
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23656
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23656
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23656 Windows App Installer Spoofing Vulnerability
...
CVE-2026-23656 Windows App Installer Spoofing Vulnerability
...
Windows App Installer Spoofing Vulnerability
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network...
Microsoft Windows App Installer 数据伪造问题漏洞
The Microsoft Windows App Installer is a tool provided by Microsoft Corporation for use with the Windows 10 and Windows 11 operating systems. It allows users to easily install applications by double-clicking .msix or .msixbundle files. This tool supports installation from websites, optional...
PT-2026-24265
Уязвимость клиента удаленного рабочего стола Windows App Client ранее - Remote Desktop Client связана с недостаточной проверкой подлинности данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, проводить спуфинг-атаки...
CVE-2026-27615 ADB-Explorer: UNC Path Support in ManualAdbPath Leads to Remote Code Execution (RCE)
ADB Explorer is a fluent UI for ADB on Windows. In versions prior to Beta 0.9.26022, ADB-Explorer allows the ManualAdbPath settings variable, which determines the path of the ADB binary to be executed, to be set to a Universal Naming Convention UNC path in the application's settings file. This...
CVE-2025-63945
A privilege escalation PE vulnerability in the Tencent iOA app thru 210.9.28693.621001 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition...
CVE-2026-27115 ADB Explorer is Vulnerable to Arbitrary Directory Deletion via Command-Line Argument
ADB Explorer is a fluent UI for ADB on Windows. Versions 0.9.26020 and below have an unvalidated command-line argument that allows any user to trigger recursive deletion of arbitrary directories on the Windows filesystem. ADB Explorer accepts an optional path argument to set a custom data...
Microsoft Windows App < 11.3.2 Local Privilege Escalation (CVE-2026-21517)
The version of Microsoft Windows App installed on the remote macOS host is prior to 11.3.2. It is, therefore, affected by a local privilege escalation vulnerability: - Improper link resolution before file access 'link following' in Windows App for Mac allows an authorized attacker to elevate...
CVE-2026-21517
Improper link resolution before file access 'link following' in Windows App for Mac allows an authorized attacker to elevate privileges locally...
CVE-2026-21517
Improper link resolution before file access 'link following' in Windows App for Mac allows an authorized attacker to elevate privileges locally...
CVE-2026-21517 Windows App for Mac Installer Elevation of Privilege Vulnerability
...
CVE-2026-21517 Windows App for Mac Installer Elevation of Privilege Vulnerability
...
CVE-2026-21517
CVE-2026-21517 affectancy: Windows App for Mac is impacted by an improper link resolution before file access ("link following"). The underlying issue allows an authorized local attacker to escalate privileges. The CVSS 3.1 base metrics indicate Local attack vector, high impact on confidentiality,...