1978 matches found
CVE-2026-50498
Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...
CVE-2026-50431
Windows Quality of Service QoS Packet Scheduler Information Disclosure Vulnerability...
CVE-2026-50696
Heap-based buffer overflow in Windows Internet Key Exchange IKE Protocol allows an unauthorized attacker to deny service over a network...
CVE-2026-49791
Improper link resolution before file access 'link following' in Windows Routing and Remote Access Service RRAS allows an authorized attacker to elevate privileges locally...
CVE-2026-58632
CVE-2026-58632 is a Windows Win32K use-after-free vulnerability in the Win32 Kernel Subsystem that could allow a locally authenticated attacker to escalate privileges. The CVE is described as a local elevation of privilege (no remote code execution). Public sources in the connected set consistent...
CVE-2026-58619
CVE-2026-58619 is a Windows Sensor Data Service vulnerability described as a use-after-free that enables an authorized attacker to locally elevate privileges. The vulnerability is reported with CVSS 3.1: LOCAL attack vector, HIGH impact (C, I, A), and low privileges required with no user interact...
CVE-2026-50683
CVE-2026-50683 is a Windows DHCP Client/Server heap-based buffer overflow that enables an authenticated attacker on an adjacent network to elevate privileges. Public details in the initial entry cite a heap-based overflow and adjacent-access attack path with high impact (C:H, I:H, A:H) and a CVSS...
CVE-2026-50362
CVE-2026-50362 is a Windows Resilient File System (ReFS) heap-based buffer overflow that allows local code execution. The issue affects the ReFS code path and, per sources, an unauthorized attacker with local access could run arbitrary code on the target system. Microsoft and corroborating source...
CVE-2026-50431 Windows Quality of Service (QoS) Packet Scheduler Information Disclosure Vulnerability
...
CVE-2026-50371 Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability
...
CVE-2026-50388
CVE-2026-50388 is an Windows NTFS local vulnerability described as an out-of-bounds read that allows an unauthenticated/unauthorized attacker to execute code locally. The CVE is tracked across multiple sources (NVD, MSRC, CIRCL) with a base CVSS v3.1 score of 7.8 (High) and LOCAL attack vector, r...
CVE-2026-50307
CVE-2026-50307 (Windows TCP/IP) is a local privilege-escalation vulnerability in the Windows TCP/IP stack caused by a use-after-free condition. The issue could allow an authenticated, local attacker to elevate privileges on a vulnerable system. The CVE is documented across multiple sources, inclu...
CVE-2026-50302 Windows Cryptographic Services Security Feature Bypass Vulnerability
...
CVE-2026-49799
Technical details are not publicly available in the provided documents. No confirmed affected products, fixes, or exploit specifics are described here; monitor official sources for updates.
CVE-2026-49799 Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability
...
CVE-2026-49794 Windows USB Audio Class Driver Information Disclosure Vulnerability
...
CVE-2026-49181 Windows DHCP Client Elevation of Privilege Vulnerability
...
CVE-2026-50694
CVE-2026-50694 is a use-after-free vulnerability in Windows Secure Socket Tunneling Protocol (SSTP) that can allow a remote attacker to execute code over the network. The linked metrics indicate a CVSSv3.1 base score of 8.1 (High) with Network attack vector, high impact on confidentiality, integr...
CVE-2026-54119
CVE-2026-54119 describes a loop with an unreachable exit condition in Windows Active Directory that can be exploited to cause a network-based denial of service by an unauthorized attacker. The affected component is Windows Active Directory; the vulnerability stems from an infinite loop, leading t...
CVE-2026-54989 Quality Windows Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability
...