- EPSS 0.23%
- Veröffentlicht 14.04.2026 16:57:54
- Zuletzt bearbeitet 24.04.2026 20:05:42
Insecure storage of sensitive information in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.
CVE-2026-26153
- EPSS 0.29%
- Veröffentlicht 14.04.2026 16:57:54
- Zuletzt bearbeitet 24.04.2026 20:03:39
Out-of-bounds read in Windows Encrypting File System (EFS) allows an authorized attacker to elevate privileges locally.
CVE-2026-20806
- EPSS 0.34%
- Veröffentlicht 14.04.2026 16:57:51
- Zuletzt bearbeitet 24.04.2026 20:16:21
Access of resource using incompatible type ('type confusion') in Windows COM allows an authorized attacker to disclose information locally.
CVE-2026-32212
- EPSS 0.31%
- Veröffentlicht 14.04.2026 16:57:50
- Zuletzt bearbeitet 20.04.2026 14:55:12
Improper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.
CVE-2026-32218
- EPSS 0.44%
- Veröffentlicht 14.04.2026 16:57:39
- Zuletzt bearbeitet 20.04.2026 14:33:13
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.
CVE-2026-32217
- EPSS 0.42%
- Veröffentlicht 14.04.2026 16:57:38
- Zuletzt bearbeitet 20.04.2026 14:34:17
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.
CVE-2026-32215
- EPSS 0.42%
- Veröffentlicht 14.04.2026 16:57:37
- Zuletzt bearbeitet 20.04.2026 14:35:41
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.
CVE-2026-32202
- EPSS 64.1%
- Veröffentlicht 14.04.2026 16:57:36
- Zuletzt bearbeitet 26.05.2026 20:00:21
Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-32183
- EPSS 0.62%
- Veröffentlicht 14.04.2026 16:57:32
- Zuletzt bearbeitet 20.04.2026 16:40:00
Improper neutralization of special elements used in a command ('command injection') in Windows Snipping Tool allows an unauthorized attacker to execute code locally.
CVE-2026-32181
- EPSS 0.42%
- Veröffentlicht 14.04.2026 16:57:31
- Zuletzt bearbeitet 26.05.2026 19:16:25
Improper privilege management in Microsoft Windows allows an authorized attacker to deny service locally.