🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-33825 | High | 7.8 |
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges loc…
|
— | Apr 14, 2026 |
| CVE-2026-27283 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Use After Free vulnerability that could result in a…
|
— | Apr 14, 2026 |
| CVE-2026-27238 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-27297 | High | 7.8 |
Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability tha…
|
— | Apr 14, 2026 |
| CVE-2026-27296 | High | 7.8 |
Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability tha…
|
— | Apr 14, 2026 |
| CVE-2026-27312 | High | 7.8 |
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result …
|
— | Apr 14, 2026 |
| CVE-2026-34629 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-27310 | High | 7.8 |
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result …
|
— | Apr 14, 2026 |
| CVE-2026-27924 | High | 7.8 |
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
|
— | Apr 14, 2026 |
| CVE-2026-27311 | High | 7.8 |
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result …
|
— | Apr 14, 2026 |
| CVE-2026-27313 | High | 7.8 |
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result …
|
— | Apr 14, 2026 |
| CVE-2026-27284 | High | 7.8 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a cr…
|
— | Apr 14, 2026 |
| CVE-2026-27298 | High | 7.8 |
Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confus…
|
— | Apr 14, 2026 |
| CVE-2026-32184 | High | 7.8 |
Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elev…
|
— | Apr 14, 2026 |
| CVE-2026-26183 | High | 7.8 |
Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.
|
— | Apr 14, 2026 |
| CVE-2026-34619 | High | 7.7 |
ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Dir…
|
— | Apr 14, 2026 |
| CVE-2026-27913 | High | 7.7 |
Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature locally.
|
— | Apr 14, 2026 |
| CVE-2026-26154 | High | 7.5 |
Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a n…
|
— | Apr 14, 2026 |
| CVE-2026-4352 | High | 7.5 |
The JetEngine plugin for WordPress is vulnerable to SQL Injection via the Custom Content Type (CCT) REST API search endp…
|
— | Apr 14, 2026 |
| CVE-2026-27282 | High | 7.5 |
ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could re…
|
— | Apr 14, 2026 |