CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST - in English

CISA KEV catalog updated: (v2026.07.10)

CVE-2026-45471
High

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVE-2026-45469
High

An integer underflow issue in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2026-45463
High

An integer underflow (wrap or wraparound) vulnerability in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2026-45461
High

A Use-After-Free vulnerability in Microsoft Office allows an unauthorized attacker to execute code locally. The issue stems from improper memory management when processing specially crafted files.

CVE-2026-45458
High

A Use-After-Free vulnerability in Microsoft Office allows an unauthorized attacker to execute code locally. The issue stems from improper memory management when processing specially crafted files.

CVE-2026-45457
High

An out-of-bounds read vulnerability in Microsoft Office Word allows an unauthorized attacker to execute code locally.

CVE-2026-45456
High

A vulnerability in Microsoft Office related to access of resource using incompatible type ('type confusion') allows an unauthorized attacker to execute code locally.

CVE-2026-45447
HighEPSS 84%

A specially crafted PKCS#7 or S/MIME signed message can trigger a use-after-free during signature verification in OpenSSL. The flaw occurs when the digestAlgorithms field is an empty ASN.1 SET, causing incorrect freeing of a caller-owned BIO.

CVE-2026-45445
High

CVE-2026-45445 vulnerability concerns the AES-OCB context where the application-supplied initialization vector (IV) is ignored. This leads to key and nonce reuse, jeopardizing data confidentiality.

CVE-2026-44824
High

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2026-44823
High

A numeric truncation error in Microsoft Office Excel allows an unauthorized attacker to execute code locally. The vulnerability can be exploited by opening a specially crafted file.

CVE-2026-44822
High

An out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network.

CVE-2026-44820
High

An out-of-bounds read vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2026-44819
High

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2026-44818
High

A race condition vulnerability in Microsoft Office Excel due to improper synchronization of shared resources allows an unauthorized attacker to execute code locally.

CVE-2026-44817
High

A type confusion vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally. The flaw arises from accessing a resource using an incompatible data type.

CVE-2026-44813
High

A use after free vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate privileges.

CVE-2026-44812
High

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

CVE-2026-44811
High

A heap-based buffer overflow in the Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-44810
High

Improper authentication in Windows Cryptographic Services allows an unauthorized attacker to elevate privileges locally.

PreviousPage 169 of 3362Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS