22028 matches found
CVE-2026-53779
WebP Server Go 0.14.4 is affected by a path traversal flaw on Windows. Attackers can exploit percent-encoded backslashes (%5C) to bypass path.Clean() in handler/router.go, taking advantage of Go’s forward-slash normalization vs Windows path APIs to read files outside IMG_PATH. CVE records indicat...
Windows Server Update Service - Insecure Deserialization
Windows Server Update Service contains an insecure deserialization vulnerability caused by deserialization of untrusted data. An unauthorized attacker with network access can exploit this to execute arbitrary code remotely, potentially leading to full system compromise. id: CVE-2025-59287 info:...
Windows Server 2003 & IIS 6.0 - Remote Code Execution
Internet Information Services IIS 6.0 in Microsoft Windows Server 2003 R2 contains a buffer overflow vulnerability in the ScStoragePathFromUrl function in the WebDAV service that could allow remote attackers to execute arbitrary code via a long header beginning with "If http://" in a PROPFIND...
EUVD-2026-35688
Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally...
EUVD-2026-35567
Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally...
CVE-2026-45602
Technical details (affected product versions, root cause, exploit specifics, and remediation) are not publicly available in the provided documents. Monitor for updates from NVD and CVE List for CVE-2026-45602.
2026-06 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5094123)
A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...
2026-06 Cumulative Update for Windows Server 2022 Datacenter: Azure Edition for x64-based Systems (KB5094128)
A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...
2026-06 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5094122)
A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...
Exploit for Stack-based Buffer Overflow in Microsoft
CVE-2026-41089 !TIP If the setup does not start, add t...
May 12, 2026—Hotpatch KB5087423 (OS Build 26100.32772)
May 12, 2026—Hotpatch KB5087423 OS Build 26100.32772 This update applies to Windows Server 2025 Datacenter & Standard machines connected to Azure Arc. To learn more about differences between security updates, optional non-security preview updates, out-of-band OOB updates, and continuous innovatio...
Windows DHCP Client Information Disclosure Vulnerability
Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally...
Windows DHCP Client Information Disclosure Vulnerability
Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally...
June 9, 2026—KB5094125 (OS Build 26100.32995)
June 9, 2026—KB5094125 OS Build 26100.32995 This cumulative update for Windows Server 2025 KB5094125, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates,...
May 12, 2026—KB5087539(OS Build 26100.32860)
May 12, 2026—KB5087539OS Build 26100.32860 This cumulative update for Windows Server 2025 KB5087539, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates,...
June 9, 2026—KB5094041 (Monthly Rollup)
June 9, 2026—KB5094041 Monthly Rollup Important The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012 R2. For a successful installation, please make sure all Subset of endpoints for ESU only a...
June 9, 2026—KB5094042 (Monthly Rollup)
June 9, 2026—KB5094042 Monthly Rollup Important The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012. For a successful installation, please make sure all Subset of endpoints for ESU only are...
June 9, 2026—KB5094128 (OS Build 20348.5256)
June 9, 2026—KB5094128 OS Build 20348.5256 This cumulative update for Windows Server 2022 KB5094128, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates, optional...
Exploit for Stack-based Buffer Overflow in Microsoft
CVE-2026-41089 - Security Buffer Overflow Quick Usage...
Microsoft Graphics Component 资源管理错误漏洞
The Microsoft Graphics Component is a graphics driver component developed by Microsoft Corporation. There is a resource management vulnerability in the Microsoft Graphics Component. Attackers can exploit this vulnerability to gain elevated privileges. The following products and versions are...