CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST - in English

CISA KEV catalog updated: (v2026.07.10)

CVE-2026-44809
High

A use after free vulnerability in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

CVE-2026-44808
High

A heap-based buffer overflow in the Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-44807
High

A use after free vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate privileges.

CVE-2026-44804
High

A use after free vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate privileges.

CVE-2026-44803
High

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

CVE-2026-44802
High

A use after free vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate privileges.

CVE-2026-44801
High

A Use-After-Free vulnerability in the Remote Desktop Client allows an unauthorized attacker to execute code remotely over a network.

CVE-2026-44799
High

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-42993
High

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-42992
High

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-42991
High

A race condition in Windows Push Notifications allows for concurrent execution using shared resources with improper synchronization. This enables an authorized attacker to elevate privileges locally.

CVE-2026-42989
High

Improper link resolution before file access in Winlogon allows an authorized attacker to elevate privileges locally.

CVE-2026-42987
High

Use after free in Windows Deployment Services allows an unauthorized attacker to execute code over a network.

CVE-2026-42986
High

Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

CVE-2026-42985
HighEPSS 58%

A Use-After-Free vulnerability in the Remote Desktop Client allows an unauthorized attacker to execute code remotely over a network.

CVE-2026-42984
High

A use after free vulnerability in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-42983
High

A use after free vulnerability in the Windows DWM Core Library allows an authorized attacker to locally elevate privileges.

CVE-2026-42981
High

An integer underflow in Windows Performance Monitor allows an unauthorized attacker to execute code over a network.

CVE-2026-42980
High

An integer underflow in the Windows NT OS Kernel allows an authorized attacker to locally elevate privileges.

CVE-2026-42979
High

A race condition in Windows Push Notifications allows for concurrent execution using shared resources with improper synchronization. This enables an authorized attacker to elevate privileges locally.

PreviousPage 170 of 3362Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS