CVE-2026-32153
- EPSS 0.2%
- Veröffentlicht 14.04.2026 16:58:27
- Zuletzt bearbeitet 20.04.2026 18:22:14
Use after free in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
- EPSS 0.16%
- Veröffentlicht 14.04.2026 16:58:26
- Zuletzt bearbeitet 20.04.2026 18:24:38
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
CVE-2026-32151
- EPSS 0.75%
- Veröffentlicht 14.04.2026 16:58:26
- Zuletzt bearbeitet 20.04.2026 18:23:33
Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network.
CVE-2026-32149
- EPSS 0.32%
- Veröffentlicht 14.04.2026 16:58:25
- Zuletzt bearbeitet 20.04.2026 18:26:23
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.
CVE-2026-32088
- EPSS 0.19%
- Veröffentlicht 14.04.2026 16:58:24
- Zuletzt bearbeitet 21.04.2026 15:05:27
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack.
CVE-2026-32084
- EPSS 0.35%
- Veröffentlicht 14.04.2026 16:58:22
- Zuletzt bearbeitet 21.04.2026 20:48:08
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.
CVE-2026-32078
- EPSS 0.26%
- Veröffentlicht 14.04.2026 16:58:20
- Zuletzt bearbeitet 21.04.2026 20:55:08
Use after free in Windows Projected File System allows an authorized attacker to elevate privileges locally.
CVE-2026-32076
- EPSS 0.26%
- Veröffentlicht 14.04.2026 16:58:19
- Zuletzt bearbeitet 21.04.2026 21:01:46
Out-of-bounds read in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.
CVE-2026-32074
- EPSS 0.26%
- Veröffentlicht 14.04.2026 16:58:18
- Zuletzt bearbeitet 22.04.2026 16:58:58
Double free in Windows Projected File System allows an authorized attacker to elevate privileges locally.
CVE-2026-32072
- EPSS 0.29%
- Veröffentlicht 14.04.2026 16:58:17
- Zuletzt bearbeitet 22.04.2026 17:04:33
Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally.