155 matches found
CVE-2026-50400
Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-50356
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Windows App Store allows an authorized attacker to elevate privileges locally...
CVE-2026-49784
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Windows App Store allows an authorized attacker to elevate privileges locally...
CVE-2026-49165
Use of uninitialized resource in Microsoft Windows App Store allows an authorized attacker to disclose information locally...
CVE-2026-48572
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-48571
Use after free in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-42900
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Store allows an unauthorized attacker to elevate privileges over a network...
CVE-2026-50356
CVE-2026-50356 describes a race-condition in Microsoft Windows App Store caused by concurrent execution using a shared resource with improper synchronization. This allows a locally authenticated attacker to elevate privileges. The fixed details or patch versions are not provided in the connected ...
CVE-2026-49784
Summary: CVE-2026-49784 describes a race condition in the Microsoft Windows App Store caused by concurrent access to a shared resource with improper synchronization. The vulnerability allows an authorized local attacker to elevate privileges. The reported CVSS v3.1 vector is AV:L/AC:H/PR:L/UI:N/S...
CVE-2026-49784 Microsoft Windows App Store Elevation of Privilege Vulnerability
...
CVE-2026-49165 Microsoft Windows App Store Information Disclosure Vulnerability
...
CVE-2026-48571
The CVE-2026-48571 entry concerns a use-after-free vulnerability in Windows App Installer that enables an authorized attacker to achieve local privilege escalation. Affected component: Windows App Installer (Windows App Package Installer). Root cause: use-after-free condition leading to elevated ...
CVE-2026-42900
The CVE-2026-42900 entry concerns a race condition caused by improper synchronization in the Windows App Store. Reported impact is privilege elevation over a network, implying an unauthorized attacker could exploit a timing-related flaw to escalate access. Documents consistently describe a concur...
CVE-2026-42900 Microsoft Windows App Store Elevation of Privilege Vulnerability
...
Microsoft Windows App Store Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Windows App Store allows an authorized attacker to elevate privileges locally...
Windows App Package Installer Elevation of Privilege Vulnerability
Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally...
Windows App Package Installer Elevation of Privilege Vulnerability
Use after free in Windows App Installer allows an authorized attacker to elevate privileges locally...
Windows App Package Installer Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Installer allows an authorized attacker to elevate privileges locally...
Microsoft Windows App Store Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Windows App Store allows an authorized attacker to elevate privileges locally...
Microsoft Windows App Store Information Disclosure Vulnerability
Use of uninitialized resource in Microsoft Windows App Store allows an authorized attacker to disclose information locally...