74584 matches found
CVE-2026-50364
Improper link resolution before file access 'link following' in Windows Server Backup allows an authorized attacker to elevate privileges locally...
CVE-2026-50303
Use of a cryptographic primitive with a risky implementation in Windows Key Guard allows an authorized attacker to bypass a security feature locally...
CVE-2026-50381
Access of resource using incompatible type 'type confusion' in Composite Image File System Driver allows an authorized attacker to disclose information locally...
CVE-2026-50300
Integer underflow wrap or wraparound in Windows Kernel allows an authorized attacker to disclose information locally...
CVE-2026-50350
Exposure of sensitive information to an unauthorized actor in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally...
CVE-2026-50295
Improper privilege management in Microsoft Windows DNS allows an authorized attacker to bypass a security feature locally...
CVE-2026-50384
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Clip Service allows an authorized attacker to elevate privileges locally...
CVE-2026-50356
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Windows App Store allows an authorized attacker to elevate privileges locally...
CVE-2026-50325
Improper access control in Windows Win32K allows an authorized attacker to elevate privileges locally...
CVE-2026-50297
Improper access control in Windows Win32K allows an authorized attacker to elevate privileges locally...
CVE-2026-50296
Use after free in Graphics Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-50316
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally...
CVE-2026-50354
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-50293
Use after free in Windows Internal Task Bar allows an authorized attacker to elevate privileges locally...
CVE-2026-49808
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-50298
Integer overflow or wraparound in Windows Spaceport.sys allows an unauthorized attacker to elevate privileges with a physical attack...
CVE-2026-49807
Exposure of sensitive information to an unauthorized actor in Windows DirectX allows an unauthorized attacker to disclose information locally...
CVE-2026-50342
Improper access control in Windows MIDI Service Module allows an authorized attacker to elevate privileges locally...
CVE-2026-50351
Improper access control in Windows Audio Compression Manager ACM allows an authorized attacker to elevate privileges locally...
CVE-2026-50318
Stack-based buffer overflow in Windows Resilient File System ReFS allows an authorized attacker to elevate privileges locally...
CVE-2026-49803
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows AppX Deployment Service allows an authorized attacker to elevate privileges locally...
CVE-2026-50323
Use after free in Windows Runtime allows an authorized attacker to elevate privileges locally...
CVE-2026-49806
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-49805
Improper access control in Windows Win32K allows an authorized attacker to elevate privileges locally...
CVE-2026-49802
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...
CVE-2026-49801
Use of uninitialized resource in Windows SMB allows an authorized attacker to disclose information locally...
CVE-2026-50333
Missing authentication for critical function in Windows Spaceport.sys allows an authorized attacker to elevate privileges locally...
CVE-2026-49804
Heap-based buffer overflow in Windows USB Video Driver allows an unauthorized attacker to elevate privileges with a physical attack...
CVE-2026-50294
Exposure of sensitive system information to an unauthorized control sphere in Windows Kernel allows an unauthorized attacker to disclose information locally...
CVE-2026-50311
Improper access control in Windows Server allows an authorized attacker to elevate privileges locally...
CVE-2026-50308
Integer underflow wrap or wraparound in Windows NTFS allows an unauthorized attacker to execute code locally...
CVE-2026-49799
Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...
CVE-2026-50299
Integer overflow or wraparound in Windows Storage Spaces Direct allows an unauthorized attacker to execute code with a physical attack...
CVE-2026-49800
Integer overflow or wraparound in Windows Web Proxy Auto-Discovery Protocol WPAD allows an authorized attacker to elevate privileges locally...
CVE-2026-50653
Loop with unreachable exit condition 'infinite loop' in Azure Active Directory allows an unauthorized attacker to deny service over a network...
CVE-2026-50652
Deserialization of untrusted data in Azure Active Directory allows an unauthorized attacker to deny service over a network...
CVE-2026-50522
Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code over a network...
CVE-2026-55014
Improper access control in Windows Remote Help Defense allows an authorized attacker to elevate privileges locally...
CVE-2026-57097
Untrusted search path in Microsoft XML allows an unauthorized attacker to bypass a security feature with a physical attack...
CVE-2026-56185
Improper authentication in Windows Admin Center allows an authorized attacker to disclose information over a network...
CVE-2026-56193
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally...
CVE-2026-50694
Use after free in Windows Secure Socket Tunneling Protocol SSTP allows an unauthorized attacker to execute code over a network...
CVE-2026-54127
Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally...
CVE-2026-56170
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network...
CVE-2026-56164
Missing authentication for critical function in Microsoft Office SharePoint allows an unauthorized attacker to elevate privileges over a network...
CVE-2026-56169
Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges over a network...
CVE-2026-55948
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2026-56155
Insufficient granularity of access control in Active Directory Federation Services AD FS allows an authorized attacker to elevate privileges locally...
CVE-2026-55899
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2026-54988
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...