🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-23669 | High | 8.8 |
Use after free in Windows Print Spooler Components allows an authorized attacker to execute code over a network.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-28513 | High | 8.5 |
Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services. Prior to 2.4.0, th…
|
⚡ Exploit ✅ Patch | Mar 10, 2026 |
| CVE-2026-26109 | High | 8.4 |
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26110 | High | 8.4 |
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to exe…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26113 | High | 8.4 |
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26148 | High | 8.1 |
External initialization of trusted variables or data stores in Azure Entra ID allows an unauthorized attacker to elevate…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25173 | High | 8.0 |
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to exec…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25172 | High | 8.0 |
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to exec…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26107 | High | 7.8 |
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24291 | High | 7.8 |
Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an a…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25174 | High | 7.8 |
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26108 | High | 7.8 |
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26112 | High | 7.8 |
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25165 | High | 7.8 |
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25166 | High | 7.8 |
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26131 | High | 7.8 |
Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26132 | High | 7.8 |
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27277 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27279 | High | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26117 | High | 7.8 |
Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allows an authorized att…
|
✅ Patch | Mar 10, 2026 |