- EPSS 0.3%
- Veröffentlicht 13.01.2026 17:56:09
- Zuletzt bearbeitet 14.01.2026 20:10:29
Concurrent execution using shared resource with improper synchronization ('race condition') in Printer Association Object allows an authorized attacker to elevate privileges locally.
CVE-2026-20805
- EPSS 5.03%
- Veröffentlicht 13.01.2026 17:56:08
- Zuletzt bearbeitet 14.01.2026 13:44:31
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.
CVE-2026-20804
- EPSS 0.5%
- Veröffentlicht 13.01.2026 17:56:07
- Zuletzt bearbeitet 14.01.2026 20:03:08
Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.
CVE-2026-20962
- EPSS 0.4%
- Veröffentlicht 13.01.2026 17:56:03
- Zuletzt bearbeitet 14.01.2026 19:34:12
Use of uninitialized resource in Dynamic Root of Trust for Measurement (DRTM) allows an authorized attacker to disclose information locally.
CVE-2025-62221
- EPSS 2.38%
- Veröffentlicht 09.12.2025 17:56:10
- Zuletzt bearbeitet 10.12.2025 13:48:09
Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
CVE-2025-64679
- EPSS 0.46%
- Veröffentlicht 09.12.2025 17:56:08
- Zuletzt bearbeitet 12.12.2025 13:35:37
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
CVE-2025-64680
- EPSS 0.37%
- Veröffentlicht 09.12.2025 17:56:08
- Zuletzt bearbeitet 12.12.2025 13:31:49
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
CVE-2025-64678
- EPSS 1.04%
- Veröffentlicht 09.12.2025 17:56:07
- Zuletzt bearbeitet 10.12.2025 19:02:35
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
CVE-2025-62565
- EPSS 0.53%
- Veröffentlicht 09.12.2025 17:56:05
- Zuletzt bearbeitet 12.12.2025 20:03:56
Use after free in Windows Shell allows an authorized attacker to elevate privileges locally.
CVE-2025-64661
- EPSS 0.24%
- Veröffentlicht 09.12.2025 17:56:05
- Zuletzt bearbeitet 10.12.2025 19:10:55
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized attacker to elevate privileges locally.