Lucene search
K

1678 matches found

Rapid7 Blog
Rapid7 Blog
added 2026/01/28 5:4 p.m.14 views

Patch Tuesday and the Enduring Challenge of Windows’ Backwards Compatibility

Introduction If you received an email with the subject “I LOVE YOU” and an attachment called “LOVE-LETTER-FOR-YOU.TXT”, would you open it? Probably not, but back in the year 2000, plenty of people did exactly that. The internet learned a hard lesson about the disproportionate power available to a...

7.8CVSS6.9AI score0.09798EPSS
Exploits5
The Hacker News
The Hacker News
added 2026/01/14 9:38 a.m.11 views

Microsoft Fixes 114 Windows Flaws in January 2026 Patch, One Actively Exploited

Microsoft on Tuesday rolled out its first security update for 2026, addressing 114 security flaws, including one vulnerability that it said has been actively exploited in the wild. Of the 114 flaws, eight are rated Critical, and 106 are rated Important in severity. As many as 58 vulnerabilities...

8.8CVSS9.2AI score0.06545EPSS
Exploits10
CVE
CVE
added 2026/01/13 5:57 p.m.27 views

CVE-2026-20871

CVE-2026-20871 refers to a Desktop Window Manager (dwm.exe) use-after-free vulnerability that enables local privilege escalation to SYSTEM. The connected exploit report and advisories describe a DWM-related attack path (Visual‑Field Singularity) affecting the DWM compositor, with PoC/claims of in...

7.8CVSS6.7AI score0.03989EPSS
Exploits2References1Affected Software8
ATTACKERKB
ATTACKERKB
added 2026/01/13 5:56 p.m.3 views

CVE-2026-20854

Use after free in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to execute code over a network...

7.5CVSS5.7AI score0.01044EPSS
Exploits0References2Affected Software4
RedhatCVE
RedhatCVE
added 2026/01/09 12:34 p.m.7 views

CVE-2023-45284

On Windows, The IsLocal function does not correctly detect reserved device names in some cases. Reserved names followed by spaces, such as "COM1 ", and reserved names "COM" and "LPT" followed by superscript 1, 2, or 3, are incorrectly reported as local. With fix, IsLocal now correctly reports the...

5.3CVSS9.6AI score0.00903EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:17 p.m.8 views

CVE-2018-10172

7-Zip through 18.01 on Windows implements the "Large memory pages" option by calling the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account, which makes it easier for attackers to bypass intended access restrictions by using this privilege in the context...

8.8CVSS7AI score0.00383EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:16 p.m.11 views

CVE-2018-1000117

Python Software Foundation CPython version From 3.2 until 3.6.4 on Windows contains a Buffer Overflow vulnerability in os.symlink function on Windows that can result in Arbitrary code execution, likely escalation of privilege. This attack appears to be exploitable via a python script that creates...

7.2CVSS7.2AI score0.0109EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:11 p.m.8 views

CVE-2018-18656

The PureVPN client before 6.1.0 for Windows stores Login Credentials username and password in cleartext. The location of such files is %PROGRAMDATA%\purevpn\config\login.conf. Additionally, all local users can read this file...

7.8CVSS6.8AI score0.00357EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:56 a.m.7 views

CVE-2020-12613

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. An attacker can spawn a process with multiple users as part of the security token prior to Avecto elevation. When Avecto elevates the process, it removes the user who is launching the process, but not the second...

8.8CVSS7AI score0.00774EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:48 a.m.6 views

CVE-2020-24161

Guangzhou NetEase Mail Master 4.14.1.1004 on Windows has a DLL hijacking vulnerability. Attackers can use this vulnerability to execute malicious code...

7.8CVSS7.2AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:48 a.m.9 views

CVE-2020-17759

An issue was found in the Evernote client for Windows 10, 7, and 2008 in the protocol handler. This enables attackers for arbitrary command execution if the user clicks on a specially crafted URL. AKA: WINNOTE-19941...

8.8CVSS7.3AI score0.02529EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:41 a.m.10 views

CVE-2022-0883

SLM has an issue with Windows Unquoted/Trusted Service Paths Security Issue. All installations version 9.x.x prior to 9.20.1 should be patched...

7.8CVSS6.8AI score0.00222EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:54 a.m.21 views

CVE-2025-1636

Exposure of sensitive information in My Personal Credentials password history component in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows an authenticated user to inadvertently leak the My Personal Credentials in a shared vault via the clear history feature due to faul...

6.5CVSS6.7AI score0.01585EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:9 a.m.11 views

CVE-2024-2362

A path traversal vulnerability exists in the parisneo/lollms-webui version 9.3 on the Windows platform. Due to improper validation of file paths between Windows and Linux environments, an attacker can exploit this vulnerability to delete any file on the system. The issue arises from the lack of...

9.1CVSS9.1AI score0.0115EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2025/12/09 8:32 p.m.1052 views

Exploit for CVE-2025-54100

CVE-2026-0386 Powershell's curl uses Invoke-WebRequest u...

7.8CVSS7.1AI score0.01523EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.11 views

MongoDB 6.0.x < 6.0.25 / 7.0.x < 7.0.21 / 8.0.x < 8.0.5 / 8.1.0-rc0 (SERVER-51366)

The version of MongoDB installed on the remote host is 6.0 prior to 6.0.25 , 7.0 prior to 7.0.21, 8.0 prior to 8.0.5, and 8.1.0-rc0. It is, therefore, affected by a vulnerability as referenced in the SERVER-51366 advisory. - The MongoDB Windows installation MSI may leave ACLs unset on custom...

7.8CVSS5.9AI score0.00111EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/25 12:0 a.m.6 views

PT-2025-48024

Security Point Windows of MaLion and MaLionCloud contains a stack-based buffer overflow vulnerability in processing HTTP headers. Receiving a specially crafted request from a remote unauthenticated attacker could lead to arbitrary code execution with SYSTEM privilege...

9.8CVSS8.3AI score0.00606EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/10/26 10:52 a.m.291 views

Exploit for CVE-2014-6324

AD Exploit Framework 🔴 CHỈ SỬ DỤNG CHO MỤC ĐÍCH HỌC TẬP VÀ...

10CVSS8AI score0.99759EPSS
Exploits160
RedhatCVE
RedhatCVE
added 2025/10/15 5:44 p.m.6 views

CVE-2025-55332

Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

6.1CVSS6.5AI score0.00533EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 6:30 p.m.5 views

EUVD-2025-34335

Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

6.1CVSS8.8AI score0.00482EPSS
Exploits0References2
Rows per page
Query Builder