Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202

Microsoft on Monday revised its advisory for a now-patched, high-severity security flaw impacting Windows Shell to acknowledge that it has been actively exploited in the wild. The vulnerability in question is CVE-2026-32202 CVSS score: 4.3, a spoofing vulnerability that could allow an attacker to...

CVE-2026-20847

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to perform spoofing over a network...

EUVD-2000-0659

Malware in sbrugna...

EUVD-2015-2558

Malware in sbrugna...

EUVD-2025-10156

Malicious code in bioql PyPI...

CVE-2025-49679 Windows Shell Elevation of Privilege Vulnerability

...

PT-2025-28577 · Microsoft · Windows Shell +1

Name of the Vulnerable Software and Affected Versions: Windows Shell affected versions not specified Description: A numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about a newer version...

Windows Shortcut Files Security Feature Bypass Vulnerability

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network...

PT-2025-24860 · Microsoft · Windows Shell +1

Name of the Vulnerable Software and Affected Versions: Windows Shell affected versions not specified Description: A protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network. Recommendations: At the moment, there is no information...

CVE-2020-1286

A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths.An attacker who successfully exploited this vulnerability could run arbitrary code in the context of the current user, aka 'Windows Shell Remote Code Execution Vulnerability'...

CVE-2025-27729

Use after free in Windows Shell allows an unauthorized attacker to execute code locally...

CVE-2025-27729 Windows Shell Remote Code Execution Vulnerability

...

Windows Shell Remote Code Execution Vulnerability

Use after free in Windows Shell allows an unauthorized attacker to execute code locally...

PT-2025-15553 · Microsoft · Windows Shell +1

Name of the Vulnerable Software and Affected Versions: Windows Shell affected versions not specified Description: The issue is related to a use after free condition in the Windows Shell, which allows an unauthorized attacker to execute code locally. Recommendations: At the moment, there is no...

CVE-2022-30222

Windows Shell Remote Code Execution Vulnerability...

CVE-2022-30222 Windows Shell Remote Code Execution Vulnerability

...

Exploit for Code Injection in Microsoft

This repository contains a proof-of-concept PoC exploit for CVE-2017-8759, a vulnerability in the Windows Shell that allows for arbitrary code execution. The exploit is designed to weaponize the vulnerability, allowing an attacker to execute malicious code on a vulnerable system. The PoC is...

MS08-038: Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582)

The remote version of Windows contains a version of the Windows Shell that contains a vulnerability in the way it handles saved searches. An attacker might use this flaw to trick an administrator to execute a saved search and therefore execute arbitrary commands on his behalf. C Tenable Network...

MS07-006: Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255)

The remote version of Windows contains a version of the Windows Shell that contains a vulnerability in the way it performs detection and registration of new hardware. An authenticated user may exploit this vulnerability to elevate his privileges. Tenable Network Security, Inc. include"compat.inc"...

CVE-2006-0012

CVE-2006-0012 is a Windows Shell vulnerability in which Windows Explorer could incorrectly handle COM objects, enabling remote code execution if a user visits a malicious Web site or opens crafted files/directories. Affected products include Windows 2000 SP4, XP SP1/SP2, and Windows Server 2003 S...