🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-34617 | High | 8.7 |
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could r…
|
— | Apr 14, 2026 |
| CVE-2026-27928 | High | 8.7 |
Improper input validation in Windows Hello allows an unauthorized attacker to bypass a security feature over a network.
|
— | Apr 14, 2026 |
| CVE-2026-27305 | High | 8.6 |
ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Dir…
|
— | Apr 14, 2026 |
| CVE-2026-33114 | High | 8.4 |
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
|
— | Apr 14, 2026 |
| CVE-2026-32190 | High | 8.4 |
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
— | Apr 14, 2026 |
| CVE-2026-27306 | High | 8.4 |
ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could re…
|
— | Apr 14, 2026 |
| CVE-2026-33115 | High | 8.4 |
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
|
— | Apr 14, 2026 |
| CVE-2026-33826 | High | 8.0 |
Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent net…
|
— | Apr 14, 2026 |
| CVE-2026-27912 | High | 8.0 |
Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over an adjacent network.
|
— | Apr 14, 2026 |
| CVE-2026-27291 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds write vulnerability that could resul…
|
— | Apr 14, 2026 |
| CVE-2026-26183 | High | 7.8 |
Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.
|
— | Apr 14, 2026 |
| CVE-2026-27238 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-26143 | High | 7.8 |
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
|
— | Apr 14, 2026 |
| CVE-2026-27293 | High | 7.8 |
Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could resul…
|
— | Apr 14, 2026 |
| CVE-2026-27292 | High | 7.8 |
Adobe Framemaker versions 2022.8 and earlier are affected by a Use After Free vulnerability that could result in arbitra…
|
— | Apr 14, 2026 |
| CVE-2026-27289 | High | 7.8 |
Photoshop Desktop versions 27.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted f…
|
— | Apr 14, 2026 |
| CVE-2026-27283 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Use After Free vulnerability that could result in a…
|
— | Apr 14, 2026 |
| CVE-2026-27284 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a cr…
|
— | Apr 14, 2026 |
| CVE-2026-27287 | High | 7.8 |
InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file…
|
— | Apr 14, 2026 |
| CVE-2026-27294 | High | 7.8 |
Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted …
|
— | Apr 14, 2026 |