Microsoft Windows - 14514 CVEs (Page 1/121)

About “Microsoft Windows”

A curated feed of “Microsoft Windows”-related CVEs appears below. We currently track 14514 CVEs for this tag (all time). In the last 365 days, 1680 were published. Average CVSS is 7.3 (all time; 7.2 over 365d), and 66% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-416 - Use After Free, CWE-122 - Heap-based Buffer Overflow, CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition').

In our taxonomy this topic maps to a MODERATE impact class. Issues here typically affect operating system packages or kernels. Plan reboots or service restarts and coordinate rollouts across fleets. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

Support & lifecycle: windows

This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.

Cycle	Release	Latest	Premier Support	Extended Support	EOL	LTS
11-26h1-e	2026-02-10	10.0.28000	2029-03-13	Unavailable	2029-03-13
11-26h1-w	2026-02-10	10.0.28000	2028-03-14	Unavailable	2028-03-14
11-25h2-e	2025-09-30	10.0.26200	2028-10-10	Unavailable	2028-10-10
11-25h2-w	2025-09-30	10.0.26200	2027-10-12	Unavailable	2027-10-12
11-24h2-iot-lts	2024-10-01	10.0.26100	2029-10-09	Unavailable	2034-10-10	LTS
11-24h2-e-lts	2024-10-01	10.0.26100	2029-10-09	Unavailable	2029-10-09	LTS
11-24h2-e	2024-10-01	10.0.26100	2027-10-12	Unavailable	2027-10-12
11-24h2-w	2024-10-01	10.0.26100	2026-10-13	Unavailable	2026-10-13 Soon
11-23h2-e	2023-10-31	10.0.22631	2026-11-10	Unavailable	2026-11-10 Soon
11-23h2-w	2023-10-31	10.0.22631	2025-11-11	Unavailable	2025-11-11 Expired
10-22h2	2022-10-18	10.0.19045	2025-10-14	2028-10-10	2025-10-14 Expired
11-22h2-e	2022-09-20	10.0.22621	2025-10-14	Unavailable	2025-10-14 Expired
11-22h2-w	2022-09-20	10.0.22621	2024-10-08	Unavailable	2024-10-08 Expired
10-21h2-iot-lts	2021-11-16	10.0.19044	2027-01-12	Unavailable	2032-01-13	LTS
10-21h2-e-lts	2021-11-16	10.0.19044	2027-01-12	Unavailable	2027-01-12	LTS
10-21h2-e	2021-11-16	10.0.19044	2024-06-11	Unavailable	2024-06-11 Expired
10-21h2-w	2021-11-16	10.0.19044	2023-06-13	Unavailable	2023-06-13 Expired
11-21h2-e	2021-10-04	10.0.22000	2024-10-08	Unavailable	2024-10-08 Expired
11-21h2-w	2021-10-04	10.0.22000	2023-10-10	Unavailable	2023-10-10 Expired
10-21h1	2021-05-18	10.0.19043	2022-12-13	Unavailable	2022-12-13 Expired
10-20h2-e	2020-10-20	10.0.19042	2023-05-09	Unavailable	2023-05-09 Expired
10-20h2-w	2020-10-20	10.0.19042	2022-05-10	Unavailable	2022-05-10 Expired
10-2004	2020-05-27	10.0.19041	2021-12-14	Unavailable	2021-12-14 Expired
10-1909-e	2019-11-12	10.0.18363	2022-05-10	Unavailable	2022-05-10 Expired
10-1909-w	2019-11-12	10.0.18363	2021-05-11	Unavailable	2021-05-11 Expired
10-1903	2019-05-21	10.0.18362	2020-12-08	Unavailable	2020-12-08 Expired
10-1809-e-lts	2018-11-13	10.0.17763	2024-01-09	Unavailable	2029-01-09	LTS
10-1809-e	2018-11-13	10.0.17763	2021-05-11	Unavailable	2021-05-11 Expired
10-1809-w	2018-11-13	10.0.17763	2020-11-10	Unavailable	2020-11-10 Expired
10-1803-e	2018-04-30	10.0.17134	2020-05-11	Unavailable	2021-05-11 Expired
10-1803-w	2018-04-30	10.0.17134	2019-11-12	Unavailable	2019-11-12 Expired
10-1709-e	2017-10-17	10.0.16299	2020-10-13	Unavailable	2020-10-13 Expired
10-1709-w	2017-10-17	10.0.16299	2019-04-09	Unavailable	2019-04-09 Expired
10-1703-e	2017-04-11	10.0.15063	2019-10-08	Unavailable	2019-10-08 Expired
10-1703-w	2017-04-11	10.0.15063	2018-10-09	Unavailable	2018-10-09 Expired
10-1607-e-lts	2016-08-02	10.0.14393	2021-10-12	Unavailable	2026-10-13 Soon	LTS
10-1607-e	2016-08-02	10.0.14393	2019-04-09	Unavailable	2019-04-09 Expired
10-1607-w	2016-08-02	10.0.14393	2018-04-10	Unavailable	2018-04-10 Expired
10-1511	2015-11-10	10.0.10586	2017-10-10	Unavailable	2017-10-10 Expired
10-1507-e-lts	2015-07-29	10.0.10240	2020-10-13	Unavailable	2025-10-14 Expired	LTS
10-1507	2015-07-29	10.0.10240	2017-05-09	Unavailable	2017-05-09 Expired
10-1507-iot	2015-04-29	10.0.10240	2020-11-10	Unavailable	2020-11-10 Expired
8.1	2013-11-13	6.3.9600	2018-01-09	Unavailable	2023-01-10 Expired
8	2012-10-30	6.2.9200	2016-01-12	Unavailable	2016-01-12 Expired
7-sp1	2011-02-22	6.1.7601	2015-01-13	Unavailable	2020-01-14 Expired
6-sp2	2009-04-29	6.0.6200	2012-04-10	Unavailable	2017-04-11 Expired
5-sp3	2008-04-21	5.1.2600	2009-04-14	Unavailable	2014-04-08 Expired

Maintained Soon (≤ 180 days) Expired

Subscribe lifecycle: RSS · RSS (expired) · ICS

Subscribe CVEs: RSS for “Microsoft Windows” · RSS (High+Critical only)

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0

2026-06-03

High

CVE-2026-50033

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227.

CVSS: 7.3 CWE: CWE-427 - Uncontrolled Search Path Element View on NVD

High

CVE-2026-44682

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227.

CVSS: 7.3 CWE: CWE-427 - Uncontrolled Search Path Element View on NVD

High

CVE-2026-44609

Local privilege escalation due to EXE hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227.

CVSS: 7.3 CWE: CWE-427 - Uncontrolled Search Path Element View on NVD

High

CVE-2026-42061

Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227.

CVSS: 7.3 CWE: CWE-250 - Execution with Unnecessary Privileges View on NVD

2026-06-02

High

CVE-2026-8036

Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leading to privilege escalation. This vulnerability affects NI-PAL 26.3.0 and p…

CVSS: 7.1 CWE: CWE-1285 - Improper Validation of Specified Index, Position, or Offset in Input View on NVD

High

CVE-2026-8035

Improper input validation in the NI-PAL kernel driver may allow a local authenticated user to cause a denial of service by triggering a crash due to a NULL pointer dereference. This vulnerability aff…

CVSS: 7.1 CWE: CWE-476 - NULL Pointer Dereference View on NVD

2026-06-01

Medium

CVE-2025-59612

Memory corruption in windows drivers while sending incorrect trusted application request

CVSS: 6.7 CWE: CWE-121 - Stack-based Buffer Overflow View on NVD

High

CVE-2024-52011

launch-editor allows users to open files with line numbers in editor from Node.js. Prior to version 2.9.0, due to the insufficient sanitization of the `file` argument in the `launchEditor`, an attack…

CVSS: 7.5 CWE: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection') View on NVD

High

CVE-2026-8501

Improper access control in the PCTCore64.sys Windows kernel driver from PC Tools Internet Security allows user-mode processes to access the PCTCoreDriver WDM device interface and invoke privileged IO…

CVSS: 7.8 CWE: CWE-782 - Exposed IOCTL with Insufficient Access Control View on NVD

High

CVE-2022-4991

Tychon includes an OpenSSL component that specifies an OPENSSLDIR variable as a subdirectory that may be controllable by an unprivileged user on Windows. Tychon contains a privileged service that use…

CVSS: 7.4 CWE: N/A View on NVD

High

CVE-2026-32325

Privilege chaining issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is exploited, a local authenticated attacker who can log in to the server where the affec…

CVSS: 7.8 CWE: CWE-268 - Privilege Chaining View on NVD

High

CVE-2026-27788

Incorrect permission assignment for critical resource issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is exploited, a local authenticated attacker who can l…

CVSS: 7.8 CWE: CWE-732 - Incorrect Permission Assignment for Critical Resource View on NVD

2026-05-29

Low

CVE-2026-4387

StrongDM Desktop Application before 23.74.0 (Desktop Client before 53.77.0) on Microsoft Windows stores authentication state, including a JSON Web Token and asymmetric key material, in cleartext in a…

CVSS: 2.0 CWE: CWE-312 - Cleartext Storage of Sensitive Information View on NVD

High

CVE-2026-10056

CORS misconfiguration in the REST API of Network Optix Nx Witness VMS before version 6.1.2, when running in the default Standard security mode, on Linux and Windows allows an unauthenticated remote a…

CVSS: 7.5 CWE: CWE-942 - Permissive Cross-domain Security Policy with Untrusted Domains View on NVD

2026-05-28

High

CVE-2026-9994

Use after free in Core in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

Low

CVE-2026-9991

Inappropriate implementation in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HT…

CVSS: 3.1 CWE: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor View on NVD

High

CVE-2026-9984

Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

CVSS: 8.8 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-9966

Integer overflow in XML in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HT…

CVSS: 8.3 CWE: CWE-472 - External Control of Assumed-Immutable Web Parameter View on NVD

Low

CVE-2026-9959

Race in WebRTC in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)

CVSS: 3.1 CWE: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') View on NVD

High

CVE-2026-9949

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-9945

Use after free in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity:…

CVSS: 8.8 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-9937

Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-9932

Use after free in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HT…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-9928

Out of bounds read in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

CVSS: 8.8 CWE: CWE-125 - Out-of-bounds Read View on NVD

High

CVE-2026-9924

Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a craf…

CVSS: 8.3 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

Medium

CVE-2026-9907

Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)

CVSS: 4.3 CWE: CWE-125 - Out-of-bounds Read View on NVD

High

CVE-2026-9905

Use after free in Accessibility in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a cr…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-9890

Use after free in XR in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-10000

Use after free in Passwords in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafte…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-10044

Usagi-org ai-goofish-monitor contains an unauthenticated arbitrary file read vulnerability in the GET /api/prompts/{filename} endpoint on Windows deployments that allows unauthenticated remote attack…

CVSS: 7.5 CWE: CWE-36 - Absolute Path Traversal View on NVD

Unknown

CVE-2026-46213

In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix UAF in inactivity-timer cleanup path Commit 38224c472a03 ("HID: appletb-kbd: fix slab use-after-free bug in…

CVSS: N/A CWE: N/A View on NVD

Unknown

CVE-2026-46139

In the Linux kernel, the following vulnerability has been resolved: smb: client: use kzalloc to zero-initialize security descriptor buffer Commit 62e7dd0a39c2d ("smb: common: change the data type o…

CVSS: N/A CWE: N/A View on NVD

High

CVE-2026-32996

This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation.

CVSS: 7.3 CWE: CWE-532 - Insertion of Sensitive Information into Log File View on NVD

2026-05-27

High

CVE-2026-42184

Tauri is a framework for building binaries for all major desktop platforms. From 2.0 to 2.11.0, a flaw in Tauri's is_local_url() function causes it to incorrectly classify remote URLs as trusted loca…

CVSS: 8.8 CWE: CWE-918 - Server-Side Request Forgery (SSRF) View on NVD

Medium

CVE-2026-3676

IBM Cloud APM, Base Private 8.1.4 and IBM Cloud APM, Advanced Private 8.1.4 IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) could allow an authenticated user to cause a denial of se…

CVSS: 6.5 CWE: CWE-1284 - Improper Validation of Specified Quantity in Input View on NVD

Medium

CVE-2026-2237

A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local users on Windows to obtain sensitive inf…

CVSS: 6.2 CWE: CWE-598 - Use of HTTP Request With Sensitive Query String View on NVD

2026-05-26

High

CVE-2026-24193

NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to denial of service,…

CVSS: 7.8 CWE: CWE-787 - Out-of-bounds Write View on NVD

High

CVE-2026-24191

NVIDIA Display Driver for Windows contains a vulnerability where an attacker could cause a time-of-check time-of-use issue. A successful exploit of this vulnerability might lead to denial of service,…

CVSS: 7.8 CWE: CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition View on NVD

High

CVE-2026-24190

NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability mi…

CVSS: 7.8 CWE: CWE-862 - Missing Authorization View on NVD

Medium

CVE-2026-24182

NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could leak held driver locks. A successful exploit of this vulnerability might lead to denial of service.

CVSS: 6.5 CWE: CWE-667 - Improper Locking View on NVD

Medium

CVE-2025-33221

NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of…

CVSS: 4.4 CWE: CWE-20 - Improper Input Validation View on NVD

Medium

CVE-2026-46430

Algernon is a small self-contained pure-Go web server. Prior to 1.17.7, the SSE event server bound to 0.0.0.0:5553 on Linux/macOS by default because the platform-dependent host default in engine/flag…

CVSS: 4.3 CWE: CWE-668 - Exposure of Resource to Wrong Sphere View on NVD

Critical

CVE-2026-45721

Algernon is a small self-contained pure-Go web server. Prior to 1.17.7, when Algernon is asked for any URL path that resolves to a directory without an index file, DirPage walks upward through parent…

CVSS: 9.0 CWE: CWE-20 - Improper Input Validation View on NVD

Medium

CVE-2025-13755

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes DB2 Connect Server) stores potentially sensitive information in log files that could be read by a local…

CVSS: 5.5 CWE: CWE-532 - Insertion of Sensitive Information into Log File View on NVD

2026-05-25

High

CVE-2026-9489

NitroSense 3.x before 3.01.3052 contains Local Privilege Escalation (LPE) vulnerability.The program exposes a Windows Named Pipe that uses a custom protocol to invoke internal functions. However, thi…

CVSS: 8.5 CWE: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') View on NVD

2026-05-24

High

CVE-2026-48831

Wine ships a .desktop file that registers itself as a MIME handler for EXE files and several other Windows executable file types. In some configurations, handling of an EXE file causes that file to b…

CVSS: 7.3 CWE: CWE-669 - Incorrect Resource Transfer Between Spheres View on NVD

2026-05-22

Medium

CVE-2026-8673

Unprotected transport of credentials vulnerability in syslink software AG Avantra on Linux, Windows allows Sniffing Attacks. This issue affects Avantra: before 25.3.0.

CVSS: 5.9 CWE: CWE-523 - Unprotected Transport of Credentials View on NVD

Medium

CVE-2026-8672

Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0.

CVSS: 5.1 CWE: CWE-1393 - Use of Default Password View on NVD

High

CVE-2026-8671

Insertion of sensitive information into log file vulnerability in syslink software AG Avantra on Linux, Windows allows Resource Leak Exposure. This issue affects Avantra: before 25.3.0.

CVSS: 7.5 CWE: CWE-532 - Insertion of Sensitive Information into Log File View on NVD

Critical

CVE-2026-8670

Insufficient session expiration vulnerability in syslink software AG Avantra on Linux, Windows allows Reusing Session IDs (aka Session Replay). This issue affects Avantra: before 25.3.1.

CVSS: 9.6 CWE: CWE-613 - Insufficient Session Expiration View on NVD

2026-05-20

High

CVE-2026-9118

Use after free in XR in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

CVSS: 8.8 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-9112

Use after free in GPU in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Hi…

CVSS: 8.8 CWE: CWE-416 - Use After Free View on NVD

Medium

CVE-2026-9110

Inappropriate implementation in UI in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML pag…

CVSS: 4.2 CWE: CWE-451 - User Interface (UI) Misrepresentation of Critical Information View on NVD

High

CVE-2026-42834

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

CVSS: 7.8 CWE: CWE-59 - Improper Link Resolution Before File Access ('Link Following') View on NVD

Medium

CVE-2026-45585

Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnerability has been made public violating coor…

CVSS: 6.8 CWE: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection') View on NVD

2026-05-19

Medium

CVE-2026-34883

An issue was discovered in the Portrait Dell Color Management application before 3.7.0 for Dell monitors. On Windows, a symbolic link vulnerability allows a local low-privileged user to escalate priv…

CVSS: 5.3 CWE: CWE-59 - Improper Link Resolution Before File Access ('Link Following') View on NVD

2026-05-18

High

CVE-2026-47092

Claude HUD through 0.0.12, patched in commit 234d9aa, contains a command injection vulnerability that allows local attackers to execute arbitrary commands by manipulating the COMSPEC environment vari…

CVSS: 7.8 CWE: CWE-427 - Uncontrolled Search Path Element View on NVD

Medium

CVE-2026-41119

Dell Live Optics Windows and Personal Edition collectors contain an improper certificate validation vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability leadi…

CVSS: 6.8 CWE: CWE-295 - Improper Certificate Validation View on NVD

2026-05-16

High

CVE-2020-37247

Kite 4.2.0.1 U1 contains an unquoted service path vulnerability in the KiteService Windows service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers…

CVSS: 7.8 CWE: CWE-428 - Unquoted Search Path or Element View on NVD

2026-05-15

Medium

CVE-2026-46383

Microsoft APM is an open-source, community-driven dependency manager for AI agents. Prior to 0.13.0, Microsoft APM contains a Windows-specific archive extraction boundary failure in the legacy-bundle…

CVSS: 5.5 CWE: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') View on NVD

Critical

CVE-2026-8398

A supply chain attack compromised the official installation packages of DAEMON Tools Lite (Windows versions 12.5.0.2421 through 12.5.0.2434), distributed from the legitimate website daemon-tools.cc b…

CVSS: 9.8 CWE: CWE-506 - Embedded Malicious Code View on NVD

High

CVE-2026-7373

Rapid7 Metasploit Pro is vulnerable to a local privilege escalation attack that allows a user to gain SYSTEM level control of a Windows host. When started the metasploitPostgreSQL service would start…

CVSS: 8.5 CWE: CWE-284 - Improper Access Control View on NVD

2026-05-14

High

CVE-2026-45369

python-utcp is the python implementation of UTCP. Prior to 1.1.3, the _substitute_utcp_args method in cli_communication_protocol.py inserts user-controlled tool_args values directly into shell comman…

CVSS: 8.3 CWE: CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') View on NVD

High

CVE-2026-8574

Use after free in Core in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-8573

Integer overflow in Codecs in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity:…

CVSS: 8.3 CWE: CWE-472 - External Control of Assumed-Immutable Web Parameter View on NVD

Medium

CVE-2026-8567

Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity:…

CVSS: 4.3 CWE: CWE-472 - External Control of Assumed-Immutable Web Parameter View on NVD

Medium

CVE-2026-8563

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium se…

CVSS: 4.3 CWE: CWE-693 - Protection Mechanism Failure View on NVD

Medium

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium secu…

CVSS: 4.3 CWE: CWE-472 - External Control of Assumed-Immutable Web Parameter View on NVD

Low

CVE-2026-8556

Inappropriate implementation in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HT…

CVSS: 3.1 CWE: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer View on NVD

High

CVE-2026-8555

Use after free in GTK in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

CVSS: 8.8 CWE: CWE-416 - Use After Free View on NVD

Low

CVE-2026-8554

Type Confusion in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted H…

CVSS: 3.1 CWE: CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion') View on NVD

High

CVE-2026-8547

Insufficient policy enforcement in Passwords in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via…

CVSS: 7.5 CWE: CWE-862 - Missing Authorization View on NVD

Medium

CVE-2026-8546

Out of bounds read in GPU in Google Chrome on Mac and Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information fr…

CVSS: 5.3 CWE: CWE-125 - Out-of-bounds Read View on NVD

High

CVE-2026-8542

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-8531

Heap buffer overflow in WebML in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity…

CVSS: 8.8 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

High

CVE-2026-8530

Use after free in Network in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted…

CVSS: 8.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-8519

CVSS: 8.8 CWE: CWE-472 - External Control of Assumed-Immutable Web Parameter View on NVD

High

CVE-2026-8510

Integer overflow in Skia in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted…

CVSS: 7.5 CWE: CWE-472 - External Control of Assumed-Immutable Web Parameter View on NVD

Critical

CVE-2026-26191

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands a…

CVSS: 9.8 CWE: CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') View on NVD

High

CVE-2026-24899

Fleet is open source device management software. Prior to version 4.82.0, a vulnerability in Fleet's Windows MDM enrollment flow allows authentication tokens from any Azure AD tenant to be accepted.…

CVSS: 7.5 CWE: CWE-290 - Authentication Bypass by Spoofing View on NVD

High

CVE-2026-44586

SiYuan is an open-source personal knowledge management system. From 2.1.12 to before 3.7.0. SiYuan's Bazaar marketplace renders package author metadata from the public bazaar stage feed into HTML wit…

CVSS: 8.3 CWE: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') View on NVD

High

CVE-2026-23998

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet’s Windows MDM management endpoint could allow requests to be processed without proper client certifi…

CVSS: 7.5 CWE: CWE-295 - Improper Certificate Validation View on NVD

Medium

CVE-2026-42598

Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers. From 2.4.0, to before 2.13.0, when requesting content from a Static Route, it was possible t…

CVSS: 6.9 CWE: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') View on NVD

2026-05-13

High

CVE-2026-30906

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access.

CVSS: 7.8 CWE: CWE-426 - Untrusted Search Path View on NVD

High

CVE-2026-30905

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via loca…

CVSS: 7.8 CWE: CWE-73 - External Control of File Name or Path View on NVD

Medium

CVE-2026-0251

Multiple local privilege escalation vulnerabilities in the Palo Alto Networks GlobalProtect™ app allow a local user to escalate their privileges to NT AUTHORITY\SYSTEM on Windows and root on macOS an…

CVSS: 5.9 CWE: CWE-426 - Untrusted Search Path View on NVD

Medium

CVE-2026-0249

Multiple improper certificate validation vulnerabilities in the Palo Alto Networks GlobalProtect™ app enables an attacker to intercept encrypted communications and potentially compromise the endpoint…

CVSS: 4.9 CWE: CWE-295 - Improper Certificate Validation View on NVD

Medium

CVE-2026-0248

An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle (MitM) attack to intercept VPN traffic. By pr…

CVSS: 6.2 CWE: CWE-295 - Improper Certificate Validation View on NVD

Medium

CVE-2026-0246

A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on ma…

CVSS: 5.9 CWE: CWE-862 - Missing Authorization View on NVD

High

CVE-2026-44470

The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. Prior to 1.3834.0, the CoworkVMService component in Claude Desktop for Window…

CVSS: 7.8 CWE: CWE-59 - Improper Link Resolution Before File Access ('Link Following') View on NVD

Unknown

CVE-2026-43483

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated Explicitly set/clear CR8 write interception when AVIC is (d…

CVSS: N/A CWE: N/A View on NVD

High

CVE-2024-47091

Privilege escalation in the mk_mysql agent plugin on Windows in Checkmk <2.4.0p29, <2.3.0p47, and 2.2.0 (EOL) allows a local unprivileged user able to create a Windows service whose name matches 'MyS…

CVSS: 7.8 CWE: CWE-427 - Uncontrolled Search Path Element View on NVD

High

CVE-2026-44612

Bytello Share (Windows Edition) installer executable provided by Bytello insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer,…

CVSS: 7.8 CWE: CWE-427 - Uncontrolled Search Path Element View on NVD

2026-05-12

High

CVE-2026-44307

Mako is a template library written in Python. Prior to 1.3.12, on Windows, a URI using backslash traversal (e.g. \..\..\ secret.txt) bypasses the directory traversal check in Template.__init__ and th…

CVSS: 8.7 CWE: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') View on NVD

High

CVE-2026-42896

Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

High

CVE-2026-42825

Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

CVSS: 7.0 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-42141

Xibo is an open source digital signage platform with a web content management system and Windows display player software. Prior to 4.4.1, an authenticated Server-Side Request Forgery (SSRF) vulnerabi…

CVSS: 7.7 CWE: CWE-918 - Server-Side Request Forgery (SSRF) View on NVD

Medium

CVE-2026-41097

Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

CVSS: 6.7 CWE: CWE-1329 - Reliance on Component That is Not Updateable View on NVD

Critical

CVE-2026-41096

Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network.

CVSS: 9.8 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

Critical

CVE-2026-41089

Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network.

CVSS: 9.8 CWE: CWE-121 - Stack-based Buffer Overflow View on NVD

High

CVE-2026-41088

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-73 - External Control of File Name or Path View on NVD

High

CVE-2026-41086

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

CVSS: 8.8 CWE: CWE-284 - Improper Access Control View on NVD

High

CVE-2026-40415

Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.

CVSS: 8.1 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-40414

Windows TCP/IP Denial of Service Vulnerability

CVSS: 7.4 CWE: CWE-476 - NULL Pointer Dereference View on NVD

High

CVE-2026-40413

Windows TCP/IP Denial of Service Vulnerability

CVSS: 7.4 CWE: CWE-476 - NULL Pointer Dereference View on NVD

High

CVE-2026-40410

Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.

CVSS: 7.0 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-40408

Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-40407

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

High

CVE-2026-40406

Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network.

CVSS: 7.5 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-40405

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network.

CVSS: 7.5 CWE: CWE-476 - NULL Pointer Dereference View on NVD

High

CVE-2026-40403

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally.

CVSS: 8.8 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

Critical

CVE-2026-40402

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.

CVSS: 9.3 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-40401

Windows TCP/IP Denial of Service Vulnerability

CVSS: 7.1 CWE: CWE-476 - NULL Pointer Dereference View on NVD

High

CVE-2026-40399

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-121 - Stack-based Buffer Overflow View on NVD

High

CVE-2026-40398

Heap-based buffer overflow in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

High

CVE-2026-40397

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-191 - Integer Underflow (Wrap or Wraparound) View on NVD

High

CVE-2026-40382

Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-416 - Use After Free View on NVD

High

CVE-2026-40377

Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-122 - Heap-based Buffer Overflow View on NVD

High

CVE-2026-40369

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVSS: 7.8 CWE: CWE-822 - Untrusted Pointer Dereference View on NVD

High

CVE-2026-35438

Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

CVSS: 8.3 CWE: CWE-862 - Missing Authorization View on NVD