Lucene search
K

2932 matches found

ATTACKERKB
ATTACKERKB
added last week6 views

CVE-2026-58583

FluxInk formerly Sunia SPB Peripheral Color Management Driver TcnPeripheral64.sys 1.0.7.2 allows local privilege escalation for a standard user account via arbitrary physical memory mapping at \Device\PhysicalMemory. Fixed in version 1.0.7.6. The fixed driver is currently available in the Windows...

8.4CVSS6AI score0.00101EPSS
Exploits0References4
EUVD
EUVD
added last week8 views

EUVD-2026-42094

FluxInk formerly Sunia SPB Peripheral Color Management Driver TcnPeripheral64.sys 1.0.7.2 allows local privilege escalation for a standard user account via arbitrary physical memory mapping at \Device\PhysicalMemory. Fixed in version 1.0.7.6. The fixed driver is currently available in the Windows...

8.4CVSS6AI score0.00101EPSS
Exploits0References4
CVE
CVE
added last week22 views

CVE-2026-58583

CVE-2026-58583 affects FluxInk Color Management Driver (TcnPeripheral64.sys) 1.0.7.2, enabling local privilege escalation for a standard user via arbitrary physical memory mapping at \Device\PhysicalMemory. Root cause: memory mapping vulnerability in the driver. Impact: potential elevation of pri...

8.4CVSS6AI score0.00101EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.7 views

PT-2026-56256

Name of the Vulnerable Software and Affected Versions FluxInk Color Management Driver versions 1.0.7.2 through 1.0.7.5 Description The Color Management Driver TcnPeripheral64.sys allows a standard user account to achieve local privilege escalation. This is possible through arbitrary physical memo...

8.4CVSS6.2AI score0.00101EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2026/07/02 12:0 a.m.6 views

KLA91128 PE vulnerability in Microsoft Apps

Privilege escalation vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2026-41106 Exploitation Related products Microsoft-365 CVE list CVE-2026-41106 unknown Solution Install necessary updates from the KB section,...

9.3CVSS5.9AI score0.00531EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2026/07/02 12:0 a.m.6 views

KLA91131 PE vulnerability in Microsoft Server Software

Privilege escalation vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2026-54998 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-Exchange-Online CVE list...

8.8CVSS5.9AI score0.0063EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2026/06/18 12:0 a.m.5 views

KLA91116 SUI vulnerability in Microsoft Dynamics

A spoofing vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2026-47646 Exploitation CVE list CVE-2026-47646 high KB list Solution Install necessary updates from the KB section, that are listed in your...

9.3CVSS6AI score0.00274EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2026/06/09 2:0 p.m.870 views

June 9, 2026—KB5094128 (OS Build 20348.5256)

None None...

9.8CVSS6.8AI score0.99962EPSS
Exploits28
Malwarebytes
Malwarebytes
added 2026/06/09 10:50 a.m.13 views

Update Chrome: Google patches actively exploited vulnerability and 73 others

Google has issued updates for the Chrome browser, patching a number of high‑severity vulnerabilities. The update includes fixes for 74 vulnerabilities, including one that is being actively exploited in the wild. The stable channel has been updated to 149.0.7827.102/.103 for Windows/Mac, and...

8.8CVSS6.4AI score0.01654EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.18 views

KB5094126: Windows 11 Version 24H2 / Windows 11 Version 25H2 Security Update (June 2026)

The remote Windows host is missing security update 5094126. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. CVE-2026-42909, CVE-2026-42913, CVE-2026-42985, CVE-2026-42992,...

9.8CVSS7.5AI score0.48438EPSS
Exploits8References109
RedhatCVE
RedhatCVE
added 2026/06/05 7:16 p.m.10 views

CVE-2026-42248

Ollama for Windows does not perform integrity or authenticity verification of downloaded update executables. Unlike other platforms, the Windows implementation of the update verification routine unconditionally returns success so no digital signature or trust validation is performed before stagin...

9.8CVSS5.8AI score0.00379EPSS
Exploits1References1
Malwarebytes
Malwarebytes
added 2026/05/28 11:3 a.m.15 views

Your Windows PC has a security deadline in June 2026

A Secure Boot certificate refresh is rolling out across supported Windows devices through Windows Update. In June 2026, the Secure Boot certificates that have shipped inside Windows since 2011 begin to expire, and Microsoft is replacing them with new 2023-dated certificates. The good news: If you...

5.7AI score
Exploits0
Kaspersky
Kaspersky
added 2026/05/21 12:0 a.m.20 views

KLA91072 Multiple vulnerabilities in Microsoft Apps

Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in M365 Copilot can be exploited remotely to obta...

9.3CVSS6.8AI score0.00503EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2026/05/21 12:0 a.m.19 views

KLA91071 OSI vulnerability in Microsoft Device

An information disclosure vulnerability was found in Microsoft Planetary Computer Pro. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2026-41104 Exploitation CVE list CVE-2026-41104 critical Solution Install necessary updates from the KB...

10CVSS5.7AI score0.00922EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2026/05/19 12:0 a.m.26 views

KLA91063 SB vulnerability in Microsoft Browser

A security feature bypass vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions. Original advisories CVE-2026-45585 Exploitation Public exploits exist for this vulnerability. Related products...

6.8CVSS6AI score0.01249EPSS
Exploits2References6
Kaspersky
Kaspersky
added 2026/05/18 12:0 a.m.16 views

KLA91055 PE vulnerability in Microsoft Azure

An elevation of privilege vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2026-42822 Exploitation Related products Microsoft-Azure CVE list CVE-2026-42822 critical KB list Solution Install necessary updates fro...

10CVSS5.8AI score0.00494EPSS
Exploits0References3
NCSC
NCSC
added 2026/05/15 6:49 a.m.57 views

The vulnerability was exploited in AMD processors

AMD has addressed a vulnerability in certain processor models through a mitigation measure included in the Windows update of May 2026. This vulnerability affects certain AMD processors. A local malicious actor could exploit this vulnerability to execute arbitrary code on the system. The mitigatio...

7.3CVSS6.2AI score0.00258EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2026/05/14 12:0 a.m.19 views

KLA91048 SUI vulnerability in Microsoft Products (ESU)

A spoofing vulnerability was found in Microsoft Microsoft Products Extended Security Update. Malicious users can exploit this vulnerability to perform cross-site scripting attack, spoof user interface. Original advisories CVE-2026-42897 Exploitation Public exploits exist for this vulnerability...

8.1CVSS5.3AI score0.0564EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2026/05/14 12:0 a.m.27 views

KLA91046 SUI vulnerability in Microsoft Server Software

A spoofing vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to perform cross-site scripting attack, spoof user interface. Original advisories CVE-2026-42897 Exploitation Public exploits exist for this vulnerability. Related products...

8.1CVSS5.3AI score0.0564EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2026/05/14 12:0 a.m.18 views

KLA91047 OSI vulnerability in Microsoft Apps

An information disclosure vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2026-41615 Exploitation Related products Microsoft-Authenticator-for-Android Microsoft-Authenticator-for-IOS CVE list...

9.6CVSS5.7AI score0.00559EPSS
Exploits0References4
Rows per page
Query Builder