74766 matches found
CVE-2026-44812
Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...
CVE-2026-44803
Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...
CVE-2026-44801
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-42985
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-44808
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...
CVE-2026-44811
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...
CVE-2026-42974
Integer overflow or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...
CVE-2026-42973
Exposure of sensitive information to an unauthorized actor in Windows Push Notifications allows an authorized attacker to disclose information locally...
CVE-2026-42970
Exposure of sensitive information to an unauthorized actor in Windows Push Notifications allows an authorized attacker to disclose information locally...
CVE-2026-42971
Exposure of sensitive information to an unauthorized actor in Windows Push Notifications allows an authorized attacker to disclose information locally...
CVE-2026-42914
Out-of-bounds read in Windows Kerberos allows an authorized attacker to deny service over a network...
CVE-2026-42915
Incorrect calculation of buffer size in Windows VMSwitch allows an authorized attacker to deny service locally...
CVE-2026-42913
Concurrent execution using shared resource with improper synchronization 'race condition' in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-42909
Concurrent execution using shared resource with improper synchronization 'race condition' in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-42916
Integer overflow or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-42907
Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network...
CVE-2026-42837
Out-of-bounds read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-50507
Missing authentication for critical function in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...
CVE-2026-48560
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...
CVE-2026-47634
Improper neutralization of special elements in output used by a downstream component 'injection' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...
CVE-2026-47281
Missing authorization in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network...
CVE-2026-45658
Improper access control in Windows BitLocker allows an authorized attacker to bypass a security feature locally...
CVE-2026-45654
Improper access control in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
CVE-2026-45653
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-45608
Out-of-bounds read in Windows DHCP Client allows an unauthorized attacker to disclose information locally...
CVE-2026-45603
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
CVE-2026-45638
Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
CVE-2026-45635
Access of resource using incompatible type 'type confusion' in Universal Plug and Play upnp.dll allows an unauthorized attacker to execute code over a network...
CVE-2026-45598
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
CVE-2026-45601
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
CVE-2026-45482
Improper limitation of a pathname to a restricted directory 'path traversal' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...
CVE-2026-45465
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-45464
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-45463
Integer underflow wrap or wraparound in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2026-45459
Protection mechanism failure in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally...
CVE-2026-45457
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2026-45455
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...
CVE-2026-44822
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network...
CVE-2026-33113
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-48578
Improper access control in Windows Secure Boot allows an authorized attacker to elevate privileges locally...
CVE-2026-48576
No cwe for this issue in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
CVE-2026-48573
No cwe for this issue in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...
CVE-2026-47654
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-48563
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-47652
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally...
CVE-2026-47653
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-47641
Improper input validation in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...
CVE-2026-47639
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-47635
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2026-47636
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...