CVE-2026-20854

Use after free in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to execute code over a network...

EUVD-2025-17741

Malicious code in bioql PyPI...

CVE-2025-53809

Improper input validation in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

CVE-2025-33057

Null pointer dereference in Windows Local Security Authority LSA allows an authorized attacker to deny service over a network...

CVE-2025-32724

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service LSASS allows an unauthorized attacker to deny service over a network...

CVE-2025-32724

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service LSASS allows an unauthorized attacker to deny service over a network...

CVE-2025-32724

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service LSASS allows an unauthorized attacker to deny service over a network...

CVE-2025-33056 Windows Local Security Authority (LSA) Denial of Service Vulnerability

...

KLA84760 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of...

PT-2025-24836

Name of the Vulnerable Software and Affected Versions Windows Local Security Authority Subsystem Service LSASS affected versions not specified Description The issue concerns uncontrolled resource consumption in the Windows Local Security Authority Subsystem Service LSASS, allowing an unauthorized...

PT-2025-24842 · Microsoft · Windows Local Security Authority +1

Name of the Vulnerable Software and Affected Versions: Windows Local Security Authority LSA affected versions not specified Description: A null pointer dereference issue in the Windows Local Security Authority LSA allows an authorized attacker to cause a denial of service over a network...

CVE-2025-21191

Time-of-check time-of-use toctou race condition in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

CVE-2025-27478

Heap-based buffer overflow in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

CVE-2025-27478

Heap-based buffer overflow in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

CVE-2025-21191

Time-of-check time-of-use toctou race condition in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

CVE-2025-21191

CVE-2025-21191 affects Windows Local Security Authority (LSA) with a time-of-check/time-of-use race condition that enables an authorized local attacker to elevate privileges (obtaining increased entitlements). The vulnerability is categorized under local privilege escalation and is documented in ...

CVE-2025-27478

CVE-2025-27478 is a heap-based buffer overflow in Windows Local Security Authority (LSA) that enables a locally authenticated attacker to elevate privileges. The CVE is rated CVSS v3.1 7.0 (HIGH) with Local access, high confidentiality/integrity/availability impact. Connected sources confirm the ...

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows Local Security Authority LSA allows an authorized attacker to elevate privileges locally...

PT-2025-15479 · Microsoft · Windows Local Security Authority +1

Name of the Vulnerable Software and Affected Versions: Windows Local Security Authority LSA affected versions not specified Description: A time-of-check time-of-use toctou race condition exists, allowing an authorized attacker to elevate privileges locally. This issue can be exploited by attacker...

PT-2025-15537 · Microsoft · Windows Local Security Authority +1

Name of the Vulnerable Software and Affected Versions: Windows Local Security Authority LSA affected versions not specified Description: A heap-based buffer overflow issue allows an authorized attacker to elevate privileges locally. This elevation-of-privilege issue can be exploited by attackers ...