Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-42830 |
|
Vulnerability in microsoft (CVE-2026-42830)
vulnerability in microsoft (CVE-2026-42830). Data can be tampered with by attackers.
|
| CVE-2026-42891 |
|
Vulnerability in microsoft (CVE-2026-42891)
vulnerability in microsoft (CVE-2026-42891). Confidential information can be exposed externally.
|
| CVE-2026-41096 |
|
Vulnerability in microsoft (CVE-2026-41096)
vulnerability in microsoft (CVE-2026-41096). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41107 |
|
Vulnerability in microsoft (CVE-2026-41107)
vulnerability in microsoft (CVE-2026-41107). Confidential information can be exposed externally.
|
| CVE-2026-41089 |
|
Vulnerability in microsoft (CVE-2026-41089)
vulnerability in microsoft (CVE-2026-41089). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41095 |
|
Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally.
Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally.
|
| CVE-2026-41094 |
|
Code Injection in microsoft (CVE-2026-41094)
code injection in microsoft (CVE-2026-41094). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41103 |
|
Vulnerability in microsoft (CVE-2026-41103)
vulnerability in microsoft (CVE-2026-41103). Confidential information can be exposed externally.
|
| CVE-2026-41100 |
|
Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally.
Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally.
|
| CVE-2026-41614 |
|
Vulnerability in microsoft (CVE-2026-41614)
vulnerability in microsoft (CVE-2026-41614). Confidential information can be exposed externally.
|
| CVE-2026-41102 |
|
Vulnerability in microsoft (CVE-2026-41102)
vulnerability in microsoft (CVE-2026-41102). Confidential information can be exposed externally.
|
| CVE-2026-41101 |
|
Vulnerability in microsoft (CVE-2026-41101)
vulnerability in microsoft (CVE-2026-41101). Confidential information can be exposed externally.
|
| CVE-2026-40405 |
|
Vulnerability in microsoft (CVE-2026-40405)
vulnerability in microsoft (CVE-2026-40405). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40401 |
|
Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally.
Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally.
|
| CVE-2026-40414 |
|
Vulnerability in microsoft (CVE-2026-40414)
vulnerability in microsoft (CVE-2026-40414). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40413 |
|
Vulnerability in microsoft (CVE-2026-40413)
vulnerability in microsoft (CVE-2026-40413). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40381 |
|
Vulnerability in microsoft (CVE-2026-40381)
vulnerability in microsoft (CVE-2026-40381). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41086 |
|
Vulnerability in microsoft (CVE-2026-41086)
vulnerability in microsoft (CVE-2026-41086). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40420 |
|
Vulnerability in microsoft (CVE-2026-40420)
vulnerability in microsoft (CVE-2026-40420). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40403 |
|
Vulnerability in microsoft (CVE-2026-40403)
vulnerability in microsoft (CVE-2026-40403). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40398 |
|
Vulnerability in microsoft (CVE-2026-40398)
vulnerability in microsoft (CVE-2026-40398). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40407 |
|
Vulnerability in microsoft (CVE-2026-40407)
vulnerability in microsoft (CVE-2026-40407). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40377 |
|
Vulnerability in microsoft (CVE-2026-40377)
vulnerability in microsoft (CVE-2026-40377). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40374 |
|
Information Disclosure in microsoft (CVE-2026-40374)
vulnerability in microsoft (CVE-2026-40374). Confidential information can be exposed externally.
|
| CVE-2026-40379 |
|
Information Disclosure in microsoft (CVE-2026-40379)
vulnerability in microsoft (CVE-2026-40379). Confidential information can be exposed externally.
|
| CVE-2026-40399 |
|
Vulnerability in microsoft (CVE-2026-40399)
vulnerability in microsoft (CVE-2026-40399). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40421 |
|
Vulnerability in microsoft (CVE-2026-40421)
vulnerability in microsoft (CVE-2026-40421). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41088 |
|
Vulnerability in microsoft (CVE-2026-41088)
vulnerability in microsoft (CVE-2026-41088). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40397 |
|
Vulnerability in microsoft (CVE-2026-40397)
vulnerability in microsoft (CVE-2026-40397). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40416 |
|
Vulnerability in microsoft (CVE-2026-40416)
vulnerability in microsoft (CVE-2026-40416). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40417 |
|
Vulnerability in microsoft (CVE-2026-40417)
vulnerability in microsoft (CVE-2026-40417). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40380 |
|
Vulnerability in microsoft (CVE-2026-40380)
vulnerability in microsoft (CVE-2026-40380). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40382 |
|
Use-After-Free in microsoft (CVE-2026-40382)
vulnerability in microsoft (CVE-2026-40382). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40402 |
|
Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.
Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.
|
| CVE-2026-40406 |
|
Use-After-Free in microsoft (CVE-2026-40406)
vulnerability in microsoft (CVE-2026-40406). Confidential information can be exposed externally.
|
| CVE-2026-40408 |
|
Use-After-Free in microsoft (CVE-2026-40408)
vulnerability in microsoft (CVE-2026-40408). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40415 |
|
Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
|
| CVE-2026-40419 |
|
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.
|
| CVE-2026-40418 |
|
Use-After-Free in microsoft (CVE-2026-40418)
vulnerability in microsoft (CVE-2026-40418). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40410 |
|
Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.
Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.
|
| CVE-2026-35423 |
|
Out-of-Bounds Read in microsoft (CVE-2026-35423)
vulnerability in microsoft (CVE-2026-35423). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-35419 |
|
Out-of-Bounds Read in microsoft (CVE-2026-35419)
vulnerability in microsoft (CVE-2026-35419). Confidential information can be exposed externally.
|
| CVE-2026-40360 |
|
Out-of-Bounds Read in microsoft (CVE-2026-40360)
vulnerability in microsoft (CVE-2026-40360). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35415 |
|
Vulnerability in microsoft (CVE-2026-35415)
vulnerability in microsoft (CVE-2026-35415). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35418 |
|
Vulnerability in microsoft (CVE-2026-35418)
vulnerability in microsoft (CVE-2026-35418). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35416 |
|
Use-After-Free in microsoft (CVE-2026-35416)
vulnerability in microsoft (CVE-2026-35416). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40361 |
|
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
|
| CVE-2026-40358 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2026-40359 |
|
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
| CVE-2026-40366 |
|
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
|