windows_11_26h1

microsoft / windows_11_24h2+7

Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally.

Page 1 of 2

CVE-2026-25177

Improper restriction of names for files and other resources in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.

Network

CVE-2026-23669

Use after free in RPC Runtime allows an authorized attacker to execute code over a network.

Network

CVE-2026-25188

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to elevate privileges over an adjacent network.

Adjacent

CVE-2026-25173

HIGH8.0

Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

Network

CVE-2026-24289

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-24292

microsoft / windows_10_1809+19

Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.

CVE-2026-24291

Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.

CVE-2026-26132

microsoft / windows_10_21h2+16

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-25176

Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2026-24294

Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.

CVE-2026-24293

microsoft / windows_10_21h2+16

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2026-24290

microsoft / windows_10_1809+19

Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.

CVE-2026-25190

Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally.

CVE-2026-25166

microsoft / windows_10_1607+21

Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally.

CVE-2026-24287

microsoft / windows_10_1809+19

External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-23672

Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability

CVE-2026-26128

Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.

CVE-2026-25174

Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.

CVE-2026-25187

Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges locally.