Lucene search
K
RedhatcveRecent

206304 matches found

RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•13 views

CVE-2026-49475

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.11.0, a STUN packet whose declared attribute length is shorter than the structure the parser...

7.5CVSS5.4AI score0.00278EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•9 views

CVE-2026-49847

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.11.1, a single unauthenticated WebSocket frame containing a deeply nested JSON document crashes...

7.5CVSS5.4AI score0.00414EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•10 views

CVE-2026-48583

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00267EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•7 views

CVE-2026-48573

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.01029EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•10 views

CVE-2026-48570

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•10 views

CVE-2026-49160

Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network...

7.5CVSS5.9AI score0.48438EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-48563

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS6AI score0.0055EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•6 views

CVE-2026-48576

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.01028EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-48574

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally...

7.8CVSS6AI score0.00445EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•6 views

CVE-2026-48578

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00268EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•13 views

CVE-2026-48565

Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00432EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-48569

Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

7.1CVSS5.5AI score0.0035EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•11 views

CVE-2026-49841

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.11.1, the modverto HTTP request handler allocates a fixed 2 MiB buffer for a POST...

9.8CVSS5.6AI score0.00394EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•11 views

CVE-2026-48305

Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•9 views

CVE-2026-48293

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00139EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•10 views

CVE-2026-47959

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

7.8CVSS6.2AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•12 views

CVE-2026-49161

Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security feature locally...

7.8CVSS5.4AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•14 views

CVE-2026-48568

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47937

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

8.2CVSS6.1AI score0.00151EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47955

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-48575

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•11 views

CVE-2026-48306

Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47917

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00266EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47919

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47952

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

7.8CVSS6.2AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•9 views

CVE-2026-47915

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00266EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•9 views

CVE-2026-47920

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•6 views

CVE-2026-47914

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00285EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•6 views

CVE-2026-47916

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47918

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47913

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00285EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•10 views

CVE-2026-47911

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47912

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00285EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47907

Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issu...

8.6CVSS5.6AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•11 views

CVE-2026-47921

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47648

Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00218EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47654

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS6AI score0.0055EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47653

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.00602EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47635

Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS5.7AI score0.00333EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•9 views

CVE-2026-47906

Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...

8.6CVSS6.2AI score0.00177EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47634

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

7.3CVSS7AI score0.00559EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47292

Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorized attacker to elevate privileges locally...

7.8CVSS5.5AI score0.00368EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47908

Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•6 views

CVE-2026-47631

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

8.1CVSS5.4AI score0.00353EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47298

Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8CVSS7.3AI score0.00669EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47293

Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•9 views

CVE-2026-47656

Protection mechanism failure in Windows Boot Manager allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•10 views

CVE-2026-47643

External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute code over a network...

9.8CVSS5.7AI score0.00753EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•7 views

CVE-2026-47291

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network...

9.8CVSS6AI score0.21506EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•8 views

CVE-2026-47289

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.01001EPSS
Exploits0References1
Total number of security vulnerabilities206304