- EPSS 0.22%
- Veröffentlicht 13.01.2026 17:56:50
- Zuletzt bearbeitet 16.01.2026 16:48:12
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.
CVE-2026-20940
- EPSS 0.45%
- Veröffentlicht 13.01.2026 17:56:44
- Zuletzt bearbeitet 16.01.2026 15:54:53
Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
CVE-2026-20934
- EPSS 0.78%
- Veröffentlicht 13.01.2026 17:56:43
- Zuletzt bearbeitet 16.01.2026 15:17:38
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20926
- EPSS 0.78%
- Veröffentlicht 13.01.2026 17:56:42
- Zuletzt bearbeitet 16.01.2026 14:40:54
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20924
- EPSS 0.3%
- Veröffentlicht 13.01.2026 17:56:41
- Zuletzt bearbeitet 16.01.2026 14:37:34
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20925
- EPSS 17.31%
- Veröffentlicht 13.01.2026 17:56:41
- Zuletzt bearbeitet 16.01.2026 14:39:54
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-20922
- EPSS 0.57%
- Veröffentlicht 13.01.2026 17:56:40
- Zuletzt bearbeitet 15.01.2026 21:03:37
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.
CVE-2026-20923
- EPSS 0.39%
- Veröffentlicht 13.01.2026 17:56:40
- Zuletzt bearbeitet 15.01.2026 18:17:50
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20919
- EPSS 0.78%
- Veröffentlicht 13.01.2026 17:56:38
- Zuletzt bearbeitet 15.01.2026 21:18:02
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20920
- EPSS 0.48%
- Veröffentlicht 13.01.2026 17:56:38
- Zuletzt bearbeitet 15.01.2026 21:16:36
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.