🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-25187 | High | 7.8 |
Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate priv…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25176 | High | 7.8 |
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privil…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25175 | High | 7.8 |
Out-of-bounds read in Windows NTFS allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25174 | High | 7.8 |
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25166 | High | 7.8 |
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25165 | High | 7.8 |
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24294 | High | 7.8 |
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24293 | High | 7.8 |
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privi…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24292 | High | 7.8 |
Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locall…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24291 | High | 7.8 |
Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an a…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24290 | High | 7.8 |
Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24289 | High | 7.8 |
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24287 | High | 7.8 |
External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23673 | High | 7.8 |
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23672 | High | 7.8 |
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23665 | High | 7.8 |
Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23660 | High | 7.8 |
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-27689 | High | 7.7 |
Due to an uncontrolled resource consumption (Denial of Service) vulnerability, an authenticated attacker with regular us…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-30929 | High | 7.7 |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-1…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-26130 | High | 7.5 |
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service ove…
|
✅ Patch | Mar 10, 2026 |