Lucene search
K

364821 matches found

NVD
NVD
•added 2026/06/09 5:17 p.m.•16 views

CVE-2026-45454

Improper limitation of a pathname to a restricted directory 'path traversal' in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS0.0163EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-45456

Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS0.00438EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•25 views

CVE-2026-45447

Issue summary: A specially crafted PKCS7 or S/MIME signed message could trigger a use-after-free during PKCS7 signature verification. Impact summary: A use-after-free may result in process crashes, heap corruption, or potentially remote code execution. When processing a PKCS7 or S/MIME signed...

8.8CVSS0.02719EPSS
Exploits0References18
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-45453

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS0.0051EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-45457

Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00372EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-45455

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...

4.3CVSS0.00629EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-45445

Issue summary: When an application drives an AES-OCB context through the public EVPCipher one-shot interface, the application-supplied initialisation vector IV is silently discarded. Impact summary: Every message encrypted under the same key uses the same effective nonce regardless of the IV...

7.5CVSS0.0032EPSS
Exploits0References6
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-44819

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS0.00455EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•16 views

CVE-2026-44824

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS0.00455EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-44822

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network...

8.2CVSS0.00518EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-44821

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally...

5.5CVSS0.00465EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-44820

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS0.00372EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-44823

Numeric truncation error in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS0.00372EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-44818

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7CVSS0.00263EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-44812

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...

7.8CVSS0.00437EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-44813

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-44814

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally...

5.5CVSS0.00318EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-44810

Improper authentication in Windows Cryptographic Services allows an unauthorized attacker to elevate privileges locally...

8.4CVSS0.00261EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-44815

Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network...

9.8CVSS0.011EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-44811

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-44817

Access of resource using incompatible type 'type confusion' in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS0.00372EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•15 views

CVE-2026-44809

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-44805

Use after free in Windows Network Controller NC Host Agent allows an authorized attacker to deny service locally...

5.5CVSS0.00356EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-44802

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-44807

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-44803

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...

7.8CVSS0.00437EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-44804

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-44808

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00267EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-42993

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS0.00434EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-42992

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS0.00461EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-42989

Improper link resolution before file access 'link following' in Winlogon allows an authorized attacker to elevate privileges locally...

7.8CVSS0.02282EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-42991

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00173EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-44799

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS0.00461EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-44801

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS0.00461EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•10 views

CVE-2026-42986

Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

7.8CVSS0.02014EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•8 views

CVE-2026-42987

Use after free in Windows Deployment Services allows an unauthorized attacker to execute code over a network...

8.1CVSS0.00589EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•9 views

CVE-2026-42984

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

7CVSS0.00251EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-42981

Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS0.0064EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-42983

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00286EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•17 views

CVE-2026-42985

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

8.8CVSS0.00981EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•25 views

CVE-2026-42980

Integer underflow wrap or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS0.05659EPSS
Exploits1References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-42979

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00185EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•14 views

CVE-2026-42977

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00185EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•13 views

CVE-2026-42978

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00204EPSS
Exploits1References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•8 views

CVE-2026-42973

Exposure of sensitive information to an unauthorized actor in Windows Push Notifications allows an authorized attacker to disclose information locally...

5.5CVSS0.00404EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-42974

Integer overflow or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS0.0064EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•8 views

CVE-2026-42969

Use of uninitialized resource in Windows Push Notifications allows an authorized attacker to disclose information locally...

5.5CVSS0.00388EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•11 views

CVE-2026-42968

Out-of-bounds read in Windows Telephony Service allows an authorized attacker to disclose information locally...

5.5CVSS0.00388EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•27 views

CVE-2026-42972

Exposure of sensitive information to an unauthorized actor in Windows Hyper-V allows an authorized attacker to disclose information locally...

5.5CVSS0.00459EPSS
Exploits0References1
NVD
NVD
•added 2026/06/09 5:17 p.m.•12 views

CVE-2026-42970

Exposure of sensitive information to an unauthorized actor in Windows Push Notifications allows an authorized attacker to disclose information locally...

5.5CVSS0.00404EPSS
Exploits0References1
Total number of security vulnerabilities364821