CVE-2026-24283
- EPSS 0.38%
- Veröffentlicht 10.03.2026 17:04:39
- Zuletzt bearbeitet 13.03.2026 19:26:14
Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally.
CVE-2026-2636
- EPSS 0.41%
- Veröffentlicht 25.02.2026 18:57:02
- Zuletzt bearbeitet 15.04.2026 00:35:42
This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" weakness, which leads to an unrecoverable inconsistency in the CLFS.sys driver. This condition forces a call to the KeBugCheckEx function, allowing an u...
CVE-2026-20929
- EPSS 1.14%
- Veröffentlicht 13.01.2026 17:57:02
- Zuletzt bearbeitet 16.01.2026 15:05:21
Improper access control in Windows HTTP.sys allows an authorized attacker to elevate privileges over a network.
CVE-2026-20920
- EPSS 0.48%
- Veröffentlicht 13.01.2026 17:56:38
- Zuletzt bearbeitet 15.01.2026 21:16:36
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
CVE-2025-55332
- EPSS 0.53%
- Veröffentlicht 14.10.2025 17:01:02
- Zuletzt bearbeitet 27.10.2025 15:24:44
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2025-55330
- EPSS 0.53%
- Veröffentlicht 14.10.2025 17:01:00
- Zuletzt bearbeitet 27.10.2025 14:55:48
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2025-59185
- EPSS 1.06%
- Veröffentlicht 14.10.2025 17:00:28
- Zuletzt bearbeitet 05.11.2025 21:15:35
External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.
- EPSS 1.82%
- Veröffentlicht 14.10.2025 17:00:06
- Zuletzt bearbeitet 21.10.2025 14:35:51
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
CVE-2025-53152
- EPSS 0.41%
- Veröffentlicht 12.08.2025 17:10:21
- Zuletzt bearbeitet 18.08.2025 17:13:07
Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally.
- EPSS 0.35%
- Veröffentlicht 08.07.2025 16:58:10
- Zuletzt bearbeitet 16.07.2025 17:32:37
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.