Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2026-42830 Vulnerability in microsoft (CVE-2026-42830)
vulnerability in microsoft (CVE-2026-42830). Data can be tampered with by attackers.
CVE-2026-42891 Vulnerability in microsoft (CVE-2026-42891)
vulnerability in microsoft (CVE-2026-42891). Confidential information can be exposed externally.
CVE-2026-41096 Vulnerability in microsoft (CVE-2026-41096)
vulnerability in microsoft (CVE-2026-41096). Successful exploitation can lead to full system takeover.
CVE-2026-41107 Vulnerability in microsoft (CVE-2026-41107)
vulnerability in microsoft (CVE-2026-41107). Confidential information can be exposed externally.
CVE-2026-41089 Vulnerability in microsoft (CVE-2026-41089)
vulnerability in microsoft (CVE-2026-41089). Successful exploitation can lead to full system takeover.
CVE-2026-41095 Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally.
Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally.
CVE-2026-41094 Code Injection in microsoft (CVE-2026-41094)
code injection in microsoft (CVE-2026-41094). Successful exploitation can lead to full system takeover.
CVE-2026-41103 Vulnerability in microsoft (CVE-2026-41103)
vulnerability in microsoft (CVE-2026-41103). Confidential information can be exposed externally.
CVE-2026-41100 Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally.
Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally.
CVE-2026-41614 Vulnerability in microsoft (CVE-2026-41614)
vulnerability in microsoft (CVE-2026-41614). Confidential information can be exposed externally.
CVE-2026-41102 Vulnerability in microsoft (CVE-2026-41102)
vulnerability in microsoft (CVE-2026-41102). Confidential information can be exposed externally.
CVE-2026-41101 Vulnerability in microsoft (CVE-2026-41101)
vulnerability in microsoft (CVE-2026-41101). Confidential information can be exposed externally.
CVE-2026-40405 Vulnerability in microsoft (CVE-2026-40405)
vulnerability in microsoft (CVE-2026-40405). Risk of unauthorized operations or information disclosure.
CVE-2026-40401 Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally.
Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally.
CVE-2026-40414 Vulnerability in microsoft (CVE-2026-40414)
vulnerability in microsoft (CVE-2026-40414). Risk of unauthorized operations or information disclosure.
CVE-2026-40413 Vulnerability in microsoft (CVE-2026-40413)
vulnerability in microsoft (CVE-2026-40413). Risk of unauthorized operations or information disclosure.
CVE-2026-40381 Vulnerability in microsoft (CVE-2026-40381)
vulnerability in microsoft (CVE-2026-40381). Successful exploitation can lead to full system takeover.
CVE-2026-41086 Vulnerability in microsoft (CVE-2026-41086)
vulnerability in microsoft (CVE-2026-41086). Successful exploitation can lead to full system takeover.
CVE-2026-40420 Vulnerability in microsoft (CVE-2026-40420)
vulnerability in microsoft (CVE-2026-40420). Successful exploitation can lead to full system takeover.
CVE-2026-40403 Vulnerability in microsoft (CVE-2026-40403)
vulnerability in microsoft (CVE-2026-40403). Successful exploitation can lead to full system takeover.
CVE-2026-40398 Vulnerability in microsoft (CVE-2026-40398)
vulnerability in microsoft (CVE-2026-40398). Successful exploitation can lead to full system takeover.
CVE-2026-40407 Vulnerability in microsoft (CVE-2026-40407)
vulnerability in microsoft (CVE-2026-40407). Successful exploitation can lead to full system takeover.
CVE-2026-40377 Vulnerability in microsoft (CVE-2026-40377)
vulnerability in microsoft (CVE-2026-40377). Successful exploitation can lead to full system takeover.
CVE-2026-40374 Information Disclosure in microsoft (CVE-2026-40374)
vulnerability in microsoft (CVE-2026-40374). Confidential information can be exposed externally.
CVE-2026-40379 Information Disclosure in microsoft (CVE-2026-40379)
vulnerability in microsoft (CVE-2026-40379). Confidential information can be exposed externally.
CVE-2026-40399 Vulnerability in microsoft (CVE-2026-40399)
vulnerability in microsoft (CVE-2026-40399). Successful exploitation can lead to full system takeover.
CVE-2026-40421 Vulnerability in microsoft (CVE-2026-40421)
vulnerability in microsoft (CVE-2026-40421). Risk of unauthorized operations or information disclosure.
CVE-2026-41088 Vulnerability in microsoft (CVE-2026-41088)
vulnerability in microsoft (CVE-2026-41088). Successful exploitation can lead to full system takeover.
CVE-2026-40397 Vulnerability in microsoft (CVE-2026-40397)
vulnerability in microsoft (CVE-2026-40397). Successful exploitation can lead to full system takeover.
CVE-2026-40416 Vulnerability in microsoft (CVE-2026-40416)
vulnerability in microsoft (CVE-2026-40416). Risk of unauthorized operations or information disclosure.
CVE-2026-40417 Vulnerability in microsoft (CVE-2026-40417)
vulnerability in microsoft (CVE-2026-40417). Successful exploitation can lead to full system takeover.
CVE-2026-40380 Vulnerability in microsoft (CVE-2026-40380)
vulnerability in microsoft (CVE-2026-40380). Successful exploitation can lead to full system takeover.
CVE-2026-40382 Use-After-Free in microsoft (CVE-2026-40382)
vulnerability in microsoft (CVE-2026-40382). Successful exploitation can lead to full system takeover.
CVE-2026-40402 Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.
Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.
CVE-2026-40406 Use-After-Free in microsoft (CVE-2026-40406)
vulnerability in microsoft (CVE-2026-40406). Confidential information can be exposed externally.
CVE-2026-40408 Use-After-Free in microsoft (CVE-2026-40408)
vulnerability in microsoft (CVE-2026-40408). Successful exploitation can lead to full system takeover.
CVE-2026-40415 Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVE-2026-40419 Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.
CVE-2026-40418 Use-After-Free in microsoft (CVE-2026-40418)
vulnerability in microsoft (CVE-2026-40418). Successful exploitation can lead to full system takeover.
CVE-2026-40410 Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.
Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.
CVE-2026-35423 Out-of-Bounds Read in microsoft (CVE-2026-35423)
vulnerability in microsoft (CVE-2026-35423). Risk of unauthorized operations or information disclosure.
CVE-2026-35419 Out-of-Bounds Read in microsoft (CVE-2026-35419)
vulnerability in microsoft (CVE-2026-35419). Confidential information can be exposed externally.
CVE-2026-40360 Out-of-Bounds Read in microsoft (CVE-2026-40360)
vulnerability in microsoft (CVE-2026-40360). Successful exploitation can lead to full system takeover.
CVE-2026-35415 Vulnerability in microsoft (CVE-2026-35415)
vulnerability in microsoft (CVE-2026-35415). Successful exploitation can lead to full system takeover.
CVE-2026-35418 Vulnerability in microsoft (CVE-2026-35418)
vulnerability in microsoft (CVE-2026-35418). Successful exploitation can lead to full system takeover.
CVE-2026-35416 Use-After-Free in microsoft (CVE-2026-35416)
vulnerability in microsoft (CVE-2026-35416). Successful exploitation can lead to full system takeover.
CVE-2026-40361 Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-40358 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-40359 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-40366 Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →