CVE-2026-27910
- EPSS 0.21%
- Veröffentlicht 14.04.2026 16:58:05
- Zuletzt bearbeitet 23.04.2026 14:58:08
Improper handling of insufficient permissions or privileges in Windows Installer allows an authorized attacker to elevate privileges locally.
- EPSS 0.2%
- Veröffentlicht 14.04.2026 16:58:03
- Zuletzt bearbeitet 23.04.2026 18:12:59
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- EPSS 0.2%
- Veröffentlicht 14.04.2026 16:58:02
- Zuletzt bearbeitet 23.04.2026 18:44:50
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-26176
- EPSS 0.23%
- Veröffentlicht 14.04.2026 16:58:01
- Zuletzt bearbeitet 23.04.2026 18:57:08
Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally.
- EPSS 0.16%
- Veröffentlicht 14.04.2026 16:58:00
- Zuletzt bearbeitet 24.04.2026 17:20:35
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-26168
- EPSS 0.18%
- Veröffentlicht 14.04.2026 16:57:57
- Zuletzt bearbeitet 24.04.2026 17:35:18
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-26159
- EPSS 0.26%
- Veröffentlicht 14.04.2026 16:57:56
- Zuletzt bearbeitet 24.04.2026 19:54:55
Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally.
CVE-2026-26163
- EPSS 0.3%
- Veröffentlicht 14.04.2026 16:57:56
- Zuletzt bearbeitet 24.04.2026 19:30:26
Double free in Windows Kernel allows an authorized attacker to elevate privileges locally.
- EPSS 0.23%
- Veröffentlicht 14.04.2026 16:57:54
- Zuletzt bearbeitet 24.04.2026 20:05:42
Insecure storage of sensitive information in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.
CVE-2026-32212
- EPSS 0.31%
- Veröffentlicht 14.04.2026 16:57:50
- Zuletzt bearbeitet 20.04.2026 14:55:12
Improper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.