1954 matches found
CVE-2026-20806 Windows COM Server Information Disclosure Vulnerability
...
CVE-2026-32156 Windows UPnP Device Host Remote Code Execution Vulnerability
...
CVE-2026-32073
CVE-2026-32073 refers to a Local Privilege Escalation in the Windows Ancillary Function Driver for WinSock. The advisory notes a local attack vector with high impact (C:H/I:H/A:H) and a low-privilege, no-user-interaction requirement, under CVSS 3.1: base score 7.0, attack vector Local, attack com...
CVE-2026-27908 Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability
...
CVE-2026-27915 Windows UPnP Device Host Elevation of Privilege Vulnerability
...
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
Microsoft Windows 安全漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There are security vulnerabilities in Microsoft Windows Universal Plug and Play UPnP Device Host. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and...
Microsoft Windows 资源管理错误漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There is a resource management vulnerability in Microsoft Windows. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are affected: Windows...
Microsoft Windows 竞争条件问题漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There are vulnerabilities related to the Microsoft Windows User Interface Core. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and versions are...
Microsoft Windows 安全漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There are security vulnerabilities in the Microsoft Windows Advanced Rasterization Platform. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and...
Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞
The Microsoft Windows Ancillary Function Driver for WinSock is a supplementary function driver for Winsock by Microsoft Corporation. There is a resource management vulnerability present in the Microsoft Windows Ancillary Function Driver for WinSock. Attackers can exploit this vulnerability to gai...
Microsoft Windows 资源管理错误漏洞
Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There is a resource management vulnerability in Microsoft Windows Universal Plug and Play UPnP Device Host. Attackers can exploit this vulnerability to obtain sensitive information. The following...
KLA90986 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, cause denial of service, spoof user interface, execute arbitrary code, read local files. Below is a complete...
Microsoft Windows TCP/IP 资源管理错误漏洞
Microsoft Windows TCP/IP is a component provided by Microsoft Corporation that offers TCP/IP configuration functions for Windows. There is a resource management vulnerability in Microsoft Windows TCP/IP. Attackers can exploit this vulnerability to gain elevated privileges. The following products...
Microsoft SQL Server 安全漏洞
Microsoft SQL Server is a large-scale commercial database system developed by Microsoft Corporation, used under the Microsoft Windows operating system. There are security vulnerabilities in Microsoft SQL Server. Attackers can exploit these vulnerabilities to execute code...
Microsoft Windows Secure Boot 安全漏洞
Microsoft Windows Secure Boot is a security boot feature provided by Microsoft Corporation. There are security vulnerabilities associated with Microsoft Windows Secure Boot. The following products and versions are affected: Windows 11 Version 26H1 for ARM64-based Systems, Windows 11 Version 26H1...
Microsoft Windows UPnP 安全漏洞
Microsoft Windows UPnP is a device proxy provided by Microsoft Corporation. It serves as a proxy that allows Windows network connections to recognize the IP address of ZoneDirector. There are security vulnerabilities associated with Microsoft Windows UPnP. Attackers can exploit these...
PT-2026-32791
Name of the Vulnerable Software and Affected Versions Windows LUAFV affected versions not specified Description A time-of-check time-of-use toctou race condition occurs in Windows LUAFV. This allows an authorized attacker to elevate privileges locally. A race condition is a situation where the...
Microsoft Windows GDI 缓冲区错误漏洞
Microsoft Windows GDI is a core underlying standard interface in the Windows operating system developed by Microsoft, responsible for drawing graphical objects on the screen or printer, managing fonts, and processing images. There is a buffer error vulnerability present in Microsoft Windows GDI...
HTTPS Fetch, Windows Meterpreter Shell, Reverse TCP Inline
Fetch and execute an x86 payload from an HTTPS server. Connect back to attacker and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. Module Options msf use payload/cmd/windows/https/x86/meterpreterreversetcp msf payloadmeterpreterreversetcp show actions ...actions... msf...