617 matches found
CVE-2025-59230
CVE-2025-59230 describes an improper access control flaw in the Windows Remote Access Connection Manager (RasMan). The vulnerability allows an authenticated local user to elevate privileges to SYSTEM by manipulating RasMan’s IPC handling/ACLs, as reported in multiple sources. Exploitation activit...
CVE-2025-62215
CVE-2025-62215 is a Windows Kernel race condition that enables local privilege escalation to SYSTEM by exploiting a concurrency window over kernel object handles, causing a double-free. A PoC exploit repository demonstrates a multithreaded trigger and heap spraying to achieve token elevation. Pub...
CVE-2025-55695
CVE-2025-55695 describes an out-of-bounds read vulnerability in the Windows WLAN Auto Config Service that enables an authorized local attacker to disclose information. The description in the initial document confirms the root cause (out-of-bounds read) and the impact (local information disclosure...
CVE-2025-59294
CVE-2025-59294 affects Windows Taskbar Live. The description indicates exposure of sensitive information to an unauthorized actor under physical access, enabling information disclosure. Connected documents provide limited details: the exact vulnerable component context and remediation are not spe...
CVE-2025-59513
Technical details about CVE-2025-59513 are not publicly available in the provided documents. Monitor for updates from Microsoft and the CVE entry for affected components, impact, and remediation.
CVE-2025-59211
CVE-2025-59211 concerns exposure of sensitive information to an unauthorized actor in Windows Push Notification Core, enabling an attacker with local access to disclose information. The initial entry identifies a local attack vector with a medium base score (CVSS 3.1: AV=L, AC=L, PR=L, UI=N, S=U,...
CVE-2025-59204
CVE-2025-59204 concerns Windows Management Services and is triggered by use of an uninitialized resource, leading to local information disclosure. The impact is confidentiality loss with local attack vector (required local access, no user interaction). The connected documents confirm Windows secu...
CVE-2026-44815
CVE-2026-44815 is a stack-based buffer overflow in the Windows DHCP Client that enables remote code execution over the network. Affected component: Windows DHCP Client; root cause is a stack-based overflow. Consequences are remote code execution with high impact, as indicated by the CVSS vector (...
CVE-2026-20862
CVE-2026-20862 is a Windows Management Services information disclosure vulnerability. The description in the initial document states that it allows an authorized attacker to disclose sensitive information locally. The connected Nessus/NCSC/ENISA entries confirm this is a local-impact issue tied t...
CVE-2026-20962
CVE-2026-20962 is described as a local-information-disclosure vulnerability in the Dynamic Root of Trust for Measurement (DRTM) mechanism. The initial and connected sources indicate an issue arising from use of an uninitialized resource, allowing an authorized attacker with local access to disclo...
CVE-2026-21510
CVE-2026-21510 is a Windows Shell security feature bypass vulnerability (Protection Mechanism Failure) that can allow remote code execution by bypassing SmartScreen prompts and shell warnings. Affected component: Windows Shell (explorer.exe) and related UI elements. Exploitation requires social e...
CVE-2026-45657
CVE-2026-45657 is a use-after-free in the Windows Kernel that enables a remote attacker to execute code over a network without user interaction. The formal CVSSv3.1 base score is 9.8 (CRITICAL), with network attack vector, low attack complexity, no privileges required, and high impact to confiden...
CVE-2026-21533
CVE-2026-21533 affects Windows Remote Desktop Services (RDS) and is caused by improper privilege management (CWE-269), allowing a local authenticated attacker with low privileges to elevate to SYSTEM. Multiple connected sources corroborate that the issue is a local EoP in RDS with CVSSv3 7.8 (HIG...
CVE-2026-47291
The CVE-2026-47291 entry describes an integer overflow/ wraparound in Windows HTTP.sys that enables a remote attacker to execute code over the network. Affected software component: Windows HTTP.sys. Root cause: integer overflow/wraparound in the HTTP.sys processing path. Impact: unauthenticated n...
CVE-2026-33824
CVE-2026-33824 is a Windows IKE Extension (ikeext) remote code execution vulnerability caused by a double-free in IKEEXT. ZDI notes it is wormable and affects systems with IKE enabled; exploitation can occur over UDP/500-4500 and may enable lateral movement from inside networks. Microsoft has iss...
CVE-2026-42904
CVE-2026-42904 is a Windows TCP/IP heap-based buffer overflow vulnerability that allows an unauthenticated attacker on an adjacent network to elevate privileges. The issue affects the Windows TCP/IP stack and is identified as a 9.6 (CRITICAL) CVSSv3.1 Base Score with attacker-friendly characteris...
CVE-2026-42992
CVE-2026-42992 describes a heap-based buffer overflow in the Remote Desktop Client that could allow an unauthenticated attacker to execute code over the network. The vulnerability affects the Remote Desktop Client as described across multiple sources (NVD, CVE listings, and Microsoft’s advisory)....
CVE-2026-45602
Technical details (affected product versions, root cause, exploit specifics, and remediation) are not publicly available in the provided documents. Monitor for updates from NVD and CVE List for CVE-2026-45602.
CVE-2026-45586
Technical details (affected product/component, root cause, impact, versions, or exploit information) are not publicly available in the provided documents. Monitor for updates.
CVE-2026-45585
CVE-2026-45585 concerns a Windows security feature bypass publicly referred to as “YellowKey.” The CVE entry notes a mitigation path provided by Microsoft to protect against the vulnerability until an update is released. The CVSSv3.1 metrics indicate a MEDIUM base score (6.8) with physical attack...
CVE-2026-48576
CVE-2026-48576 is a Windows Secure Boot vulnerability described as a protection mechanism failure enabling a local attacker with high privileges to bypass a security feature. The available documents specify a local attack vector with low complexity and no user interaction, and a base CVSS 3.1 sco...
CVE-2026-33829
CVE-2026-33829 concerns the Windows Snipping Tool and is assigned a CVSSv3.1 base score of 4.3 (Medium). The vulnerability is described with a network attack vector but requires user interaction and does not affect integrity or availability, with confidentiality impact listed as Low. The metric i...
CVE-2026-40369
CVE-2026-40369 is a Windows Kernel elevation of privilege vulnerability described as an untrusted pointer dereference that could allow an authorized, local attacker to elevate privileges. Connected documents confirm this is affecting Windows kernel components across Windows 11 (versions in 25H2/2...
CVE-2026-45597
The CVE-2026-45597 issue affects Windows UI Automation Manager (uiamanager.dll). A race condition arises from concurrent execution with improper synchronization on a shared resource, enabling a local, authorized attacker to elevate privileges. Documents confirm the vulnerability type and impact (...
CVE-2025-47827
Technical details for CVE-2025-47827 are not publicly provided in the supplied documents. The initial description notes a Secure Boot bypass via igel-flash-driver, but no additional technical specifics, affected versions, or fixes are included here. Monitor for updates.
CVE-2025-60710
CVE-2025-60710 is a Windows privilege-escalation vulnerability in the Host Process for Windows Tasks caused by improper link resolution before file access (link following). The CVE entry notes local abuse by an authorized attacker and a high impact (C:H, I:H, A:H) with local attack vector and no ...
CVE-2026-33828
CVE-2026-33828 affects Windows Device Health Attestation (DHA). The vulnerability is a trust boundary violation in Windows Attestation that allows an authorized local attacker to elevate privileges. CVSS v3.1 base metrics indicate high impact to confidentiality, integrity, and availability with l...
CVE-2025-62221
CVE-2025-62221 is a local-elevation vulnerability in the Windows Cloud Files Mini Filter Driver (CLOUD FILES MINIFILTER DRIVER). It is a use-after-free condition in the driver that can allow an authorized local attacker to escalate to SYSTEM privileges. Public PoCs/Exploits exist (GitHub repos AB...
CVE-2026-20846
CVE-2026-20846 describes a buffer over-read in Windows GDI+ that can be exploited over a network to cause a denial of service. The CVSS v3.1 base score is 7.5 (HIGH). Mitigation requires the Microsoft update per the MSRC vulnerability entry CVE-2026-20846.
CVE-2026-20931
CVE-2026-20931 is a Windows Telephony Service elevation-of-privilege vulnerability described as external control of a file name or path. The connected sources confirm the affected component as Windows Telephony Service and the issue enables an attacker on an adjacent network to obtain increased p...
CVE-2026-26128
CVE-2026-26128 concerns an elevation-of-privilege flaw in Windows SMB Server caused by improper authentication. The vulnerability affects Windows SMB Server and is described in connected sources as allowing an authorized local attacker to obtain higher privileges. Evidence from the connected docu...
CVE-2026-45604
CVE-2026-45604 is an out-of-bounds read vulnerability in the Windows AppID (Windows Application Identity) Subsystem that can allow an authorized local attacker to disclose information. The affected component is described as the AppID Subsystem; the root cause is an out-of-bounds read leading to i...
CVE-2026-33841
CVE-2026-33841 is a heap-based buffer overflow in the Windows kernel that allows an authorized, local attacker to elevate privileges. Public docs consistently describe the vulnerability as a local privilege escalation in Windows Kernel. The CVE has accompanying CVSSv3.1 metrics indicating local a...
CVE-2026-44803
CVE-2026-44803 describes an integer overflow/wraparound in Windows Win32K - GRFX that can allow a local attacker to execute code. The vulnerability is identified across multiple sources (NVD, CVE listing, and MSRC update page) and is classified with a high impact: local code execution, requiring ...
CVE-2025-60724
Technical details about CVE-2025-60724 are not provided in the supplied documents. Connected KBs discuss OS updates and security fixes but do not specify vulnerable product versions, root cause, exploitation, or patch specifics for this CVE. Monitor for updates.
CVE-2025-25004
CVE-2025-25004 affects Microsoft PowerShell. The connected documents corroborate a local privilege escalation vulnerability due to improper access control, enabling an authorized attacker to obtain elevated privileges on the host. The advisory entries (including NCSC-2025-0313) assign CVSS v3.1/3...
CVE-2026-42978
CVE-2026-42978: A race condition due to improper synchronization in Windows Push Notifications leads to local privilege escalation for an authorized attacker. The CVSSv3.1 base score is 7.8 (LOCAL, HIGH impact on confidentiality, integrity, and availability) with HIGH attack complexity and LOW pr...
CVE-2026-42985
CVE-2026-42985 is described in connected sources as a heap-based buffer overflow in the Remote Desktop Client that allows an unauthenticated attacker to execute code over the network. The initial and connected docs provide the vulnerability description and a high CVSS score (8.8, HIGH) with netwo...
CVE-2025-24990
CVE-2025-24990 is a local privilege escalation in the Microsoft‑supplied Agere Modem Driver (ltmdm64.sys). The issue is described as an untrusted pointer dereference within the driver, enabling a local attacker to escalate privileges to administrator. Microsoft addressed it by removing the driver...
CVE-2025-59282
CVE-2025-59282 affects Inbox COM Objects. The vulnerability is a race condition caused by concurrent access to a shared resource, leading to potential local code execution by an authenticated attacker with local access. The score in public metrics lists a CVSS v3.1 base score of 7.0 (HIGH) with l...
CVE-2026-20805
CVE-2026-20805 is a local information-disclosure vulnerability in Microsoft Windows Desktop Window Manager (dwm.exe). The provided documents describe that an authenticated, low-privilege user can leak sensitive information via improper handling of ALPC-related structures (ALPC ports/sections) and...
CVE-2026-40403
CVE-2026-40403 describes a heap-based buffer overflow in Windows Win32K GRFX that could allow a locally authenticated attacker to execute code. Affected component is Windows graphics subsystem (Win32K GRFX); cause is a heap-based overflow. Impact per available data is local code execution with hi...
CVE-2025-54100
CVE-2025-54100 is a PowerShell RCE vulnerability tied to improper neutralization during MSHTML-based HTML parsing when Invoke-WebRequest is used without -UseBasicParsing. Affected: Windows PowerShell 5.1 on Windows 10/11 and Windows Server 2008–2025; attack is locally exploitable with user intera...
CVE-2026-21519
CVE-2026-21519 is a local elevation-of-privilege flaw in Windows Desktop Window Manager caused by type confusion. An authenticated, low-privilege attacker can overwhelm DWM locally to gain SYSTEM rights, with no user interaction required. It has been identified as exploited in the wild by multipl...
CVE-2026-40404
CVE-2026-40404 concerns a Windows Universal Disk Format (UDFS) File System Driver Elevation of Privilege. The vulnerability affects the UDFS component, with a local attack vector, requiring low privileges and no user interaction, and yields high impact to confidentiality, integrity, and availabil...
CVE-2026-23673
Technical details are not publicly provided in the supplied documents. Monitor for updates.
CVE-2026-26179
Technical details about CVE-2026-26179 are not provided in the available documents; no product/version specifics or exploit information are disclosed. Monitor for updates.
CVE-2026-33834
Technical details are not publicly available in the provided documents. No affected products/versions or remediation specifics are included here. Monitor for updates from official CVE/NVD entries to obtain concrete exploit info, mitigations, and fixes.
CVE-2026-26151
CVE-2026-26151 describes insufficient UI warnings in Windows Remote Desktop that can enable a network attacker to spoof a remote session. The NVD entry lists a CVSS v3.1 base score of 7.1 (HIGH) with network access, no privileges required, user interaction required, and impact to confidentiality ...
CVE-2026-35421
CVE-2026-35421 describes a heap-based buffer overflow in Windows GDI that permits a local attacker to execute arbitrary code. The entry lists a CVSS v3.1 base score of 7.8 (HIGH) with LOCAL attack vector, LOW attack complexity, NO privileges required, user interaction required, and impacts to con...