🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-26108 | High | 7.8 |
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27273 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27269 | High | 7.8 |
Premiere Pro versions 25.5 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, …
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27275 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26117 | High | 7.8 |
Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allows an authorized att…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26128 | High | 7.8 |
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25190 | High | 7.8 |
Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25187 | High | 7.8 |
Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate priv…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25165 | High | 7.8 |
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25174 | High | 7.8 |
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25176 | High | 7.8 |
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privil…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27277 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27276 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26134 | High | 7.8 |
Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26141 | High | 7.8 |
Improper authentication in Azure Arc allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26107 | High | 7.8 |
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27279 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27280 | High | 7.8 |
DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitr…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27689 | High | 7.7 |
Due to an uncontrolled resource consumption (Denial of Service) vulnerability, an authenticated attacker with regular us…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-30929 | High | 7.7 |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-1…
|
✅ Patch | Mar 10, 2026 |