Lucene search
K

364821 matches found

NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-47648

Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally...

7CVSS0.00218EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•15 views

CVE-2026-47640

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS0.00505EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-47641

Improper input validation in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS0.00505EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•16 views

CVE-2026-47652

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally...

8.2CVSS0.00341EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-47654

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS0.0055EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-47653

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

8.8CVSS0.00602EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•16 views

CVE-2026-47637

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS0.00505EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-47631

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

8.1CVSS0.00353EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-47298

Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8CVSS0.00669EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•17 views

CVE-2026-47638

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS0.00505EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-47636

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS0.0051EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-47635

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS0.00333EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-47634

Improper neutralization of special elements in output used by a downstream component 'injection' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

7.3CVSS0.00559EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-47639

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS0.0051EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•8 views

CVE-2026-47291

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network...

9.8CVSS0.21506EPSS
Exploits1References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-47293

Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...

7CVSS0.00234EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•16 views

CVE-2026-47287

Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...

6.5CVSS0.00622EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-47284

Exposure of sensitive information to an unauthorized actor in Visual Studio Code allows an unauthorized attacker to disclose information over a network...

6.5CVSS0.00763EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-47289

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

8.8CVSS0.01001EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-47288

Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code over an adjacent network...

7.1CVSS0.00499EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-47292

Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorized attacker to elevate privileges locally...

7.8CVSS0.00368EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-46492

md-fileserver allows for local viewing of markdown files in a browser. Prior to version 1.10.3, a cross-site scripting XSS vulnerability exists in the application’s Markdown rendering logic. When user-supplied Markdown content is rendered, embedded raw HTML—including tags—is processed and injecte...

7.2CVSS0.00213EPSS
Exploits0References2
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-45657

Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network...

9.8CVSS0.15478EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•15 views

CVE-2026-45771

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.11.0, FreeSWITCH's bundled XML parser expands nested declarations without a depth or count boun...

7.5CVSS0.00343EPSS
Exploits0References2
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45658

Improper access control in Windows BitLocker allows an authorized attacker to bypass a security feature locally...

7.8CVSS0.00295EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-47281

Missing authorization in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network...

9.6CVSS0.00591EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•17 views

CVE-2026-45649

Improper access control in Office for Android allows an unauthorized attacker to perform spoofing locally...

7.1CVSS0.00419EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45650

User interface ui misrepresentation of critical information in Microsoft Bing allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS0.00619EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-45656

Protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feature locally...

7.8CVSS0.00307EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-45655

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

5.3CVSS0.00413EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-45654

Improper access control in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS0.00309EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•8 views

CVE-2026-45653

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally...

7CVSS0.00251EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-45643

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00372EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•21 views

CVE-2026-45647

Time-of-check time-of-use toctou race condition in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally...

7CVSS0.00215EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•17 views

CVE-2026-45642

Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack...

3.9CVSS0.00319EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•20 views

CVE-2026-45644

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Live Share Canvas SDK allows an authorized attacker to elevate privileges over a network...

8CVSS0.00554EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-45648

Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to execute code over a network...

8.8CVSS0.01124EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45641

Access of resource using incompatible type 'type confusion' in Windows Hyper-V allows an unauthorized attacker to execute code locally...

8.4CVSS0.00307EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45645

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS0.00372EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-45639

Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network...

7.5CVSS0.0087EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-45640

Use after free in Windows Bluetooth Port Driver allows an authorized attacker to elevate privileges locally...

7CVSS0.00234EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45638

Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00286EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45636

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally...

7.8CVSS0.00411EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45637

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00286EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•17 views

CVE-2026-45635

Access of resource using incompatible type 'type confusion' in Universal Plug and Play upnp.dll allows an unauthorized attacker to execute code over a network...

8.1CVSS0.0052EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-45634

Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally...

5.5CVSS0.00362EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•34 views

CVE-2026-45607

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally...

8.4CVSS0.00357EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-45606

Out-of-bounds read in Microsoft UxTheme Library uxtheme.dll allows an authorized attacker to deny service locally...

5.5CVSS0.00383EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•16 views

CVE-2026-45604

Out-of-bounds read in Windows Application Identity AppID Subsystem allows an authorized attacker to disclose information locally...

5.5CVSS0.00341EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45605

Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00286EPSS
Exploits0References1
Total number of security vulnerabilities364821