🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-24283 | مرتفع | 8.8 |
Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-26116 | مرتفع | 8.8 |
Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized …
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-28513 | مرتفع | 8.5 |
Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services. Prior to 2.4.0, th…
|
⚡ Exploit ✅ Patch | مارس 10, 2026 |
| CVE-2026-26113 | مرتفع | 8.4 |
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-26109 | مرتفع | 8.4 |
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-26110 | مرتفع | 8.4 |
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to exe…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-26148 | مرتفع | 8.1 |
External initialization of trusted variables or data stores in Azure Entra ID allows an unauthorized attacker to elevate…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-25173 | مرتفع | 8.0 |
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to exec…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-25172 | مرتفع | 8.0 |
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to exec…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-25165 | مرتفع | 7.8 |
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-23673 | مرتفع | 7.8 |
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-23660 | مرتفع | 7.8 |
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-24292 | مرتفع | 7.8 |
Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locall…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-24291 | مرتفع | 7.8 |
Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an a…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-24290 | مرتفع | 7.8 |
Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-23672 | مرتفع | 7.8 |
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-24293 | مرتفع | 7.8 |
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privi…
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-23665 | مرتفع | 7.8 |
Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-24289 | مرتفع | 7.8 |
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
|
✅ Patch | مارس 10, 2026 |
| CVE-2026-24287 | مرتفع | 7.8 |
External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.
|
✅ Patch | مارس 10, 2026 |