Chromium: CVE-2026-1504 Inappropriate implementation in Background Fetch API
Published on: 2026-01-30 03:20:43
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
CVE-2026-20960 PowerApps Desktop Client Remote Code Execution Vulnerability
Published on: 2026-01-29 08:00:00
Link: View Details
Corrected Download links in the Security Updates table. This is an informational change only.
CVE-2026-21509 Microsoft Office Security Feature Bypass Vulnerability
Published on: 2026-01-28 08:00:00
Link: View Details
Acknowledgement added. This is an informational change only.
CVE-2026-20805 Desktop Window Manager Information Disclosure Vulnerability
Published on: 2026-01-27 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2026-21509 Microsoft Office Security Feature Bypass Vulnerability
Published on: 2026-01-27 08:00:00
Link: View Details
Updated FAQ information. This is an informational change only.
CVE-2026-21509 Microsoft Office Security Feature Bypass Vulnerability
Published on: 2026-01-26 08:00:00
Link: View Details
The following revisions have been made: 1) Microsoft is announcing the availability of the security updates for Microsoft Office 2016 and 2019. Customers running these versions of Office should install the update for their product to be protected from this vulnerability. Customers whose systems are configured to receive automatic updates do not need to take any further action. 2) Updated FAQ and Mitigations.
CVE-2026-21509 Microsoft Office Security Feature Bypass Vulnerability
Published on: 2026-01-26 08:00:00
Link: View Details
Corrected CVSS score. This is an informational change only.
CVE-2026-21509 Microsoft Office Security Feature Bypass Vulnerability
Published on: 2026-01-26 08:00:00
Link: View Details
Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally.
CVE-2026-20805 Desktop Window Manager Information Disclosure Vulnerability
Published on: 2026-01-23 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
Chromium: CVE-2026-1220 Race in V8
Published on: 2026-01-23 08:00:22
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
CVE-2026-21520 Copilot Studio Information Disclosure Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
CVE-2026-24304 Azure Resource Manager Elevation of Privilege Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Improper access control in Azure Resource Manager allows an authorized attacker to elevate privileges over a network.
CVE-2026-24306 Azure Front Door Elevation of Privilege Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-21524 Azure Data Explorer Information Disclosure Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Azure Data Explorer allows an unauthorized attacker to disclose information over a network.
CVE-2026-24305 Azure Entra ID Elevation of Privilege Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Azure Entra ID Elevation of Privilege Vulnerability
CVE-2026-24307 M365 Copilot Information Disclosure Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.
CVE-2026-21227 Azure Logic Apps Elevation of Privilege Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Improper limitation of a pathname to a restricted directory ('path traversal') in Azure Logic Apps allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-21521 Word Copilot Information Disclosure Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Improper neutralization of escape, meta, or control sequences in Copilot allows an unauthorized attacker to disclose information over a network.
CVE-2026-21264 Microsoft Account Spoofing Vulnerability
Published on: 2026-01-22 08:00:00
Link: View Details
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Account allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-20805 Desktop Window Manager Information Disclosure Vulnerability
Published on: 2026-01-20 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2026-20818 Windows Kernel Information Disclosure Vulnerability
Published on: 2026-01-20 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2026-20943 Microsoft Office Click-To-Run Remote Code Execution Vulnerability
Published on: 2026-01-20 08:00:00
Link: View Details
Updated FAQ information. This is an informational change only.
CVE-2026-20830 Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
Published on: 2026-01-20 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2026-21221 Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
Published on: 2026-01-20 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2026-20848 Windows SMB Server Elevation of Privilege Vulnerability
Published on: 2026-01-20 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2026-20943 Microsoft Office Click-To-Run Remote Code Execution Vulnerability
Published on: 2026-01-20 08:00:00
Link: View Details
Corrected the affected product name in the CVE title and in the FAQs. This is an informational change only.
CVE-2026-20960 Microsoft Power Apps Remote Code Execution Vulnerability
Published on: 2026-01-16 08:00:00
Link: View Details
Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a network.
Chromium: CVE-2026-0907 Incorrect security UI in Split View
Published on: 2026-01-16 20:08:25
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0906 Incorrect security UI
Published on: 2026-01-16 20:08:24
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0905 Insufficient policy enforcement in Network
Published on: 2026-01-16 20:08:24
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0904 Incorrect security UI in Digital Credentials
Published on: 2026-01-16 20:08:23
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0903 Insufficient validation of untrusted input in Downloads
Published on: 2026-01-16 20:08:22
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0901 Inappropriate implementation in Blink
Published on: 2026-01-16 20:08:20
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0899 Out of bounds memory access in V8
Published on: 2026-01-16 20:08:16
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
CVE-2026-21223 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
Published on: 2026-01-16 08:00:00
Link: View Details
Microsoft Edge Elevation Service exposes a privileged COM interface that inadequately validates the privileges of the calling process. A standard (non‑administrator) local user can invoke the IElevatorEdge interface method LaunchUpdateCmdElevatedAndWait, causing the service to execute privileged update commands as LocalSystem.
This allows a non‑administrator to enable or disable Windows Virtualization‑Based Security (VBS) by modifying protected system registry keys under HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard. Disabling VBS weakens critical platform protections such as Credential Guard, Hypervisor‑protected Code Integrity (HVCI), and the Secure Kernel, resulting in a security feature bypass.
Chromium: CVE-2026-0908 Use after free in ANGLE
Published on: 2026-01-16 20:08:26
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0900 Inappropriate implementation in V8
Published on: 2026-01-16 20:08:19
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
Chromium: CVE-2026-0902 Inappropriate implementation in V8
Published on: 2026-01-16 20:08:21
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
CVE-2025-64678 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Published on: 2026-01-14 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2025-64679 Windows DWM Core Library Elevation of Privilege Vulnerability
Published on: 2026-01-14 08:00:00
Link: View Details
Updated the build numbers. This is an informational update only.
CVE-2026-20958 Microsoft SharePoint Information Disclosure Vulnerability
Published on: 2026-01-14 08:00:00
Link: View Details
Updated acknowledgment. This is an informational change only.
CVE-2026-20962 Dynamic Root of Trust for Measurement (DRTM) Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use of uninitialized resource in Dynamic Root of Trust for Measurement (DRTM) allows an authorized attacker to disclose information locally.
CVE-2026-21265 Secure Boot Certificate Expiration Security Feature Bypass Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration, and devices containing affected certificate versions must update them to maintain Secure Boot functionality and avoid compromising security by losing security fixes related to Windows boot manager or Secure Boot.
The operating system’s certificate update protection mechanism relies on firmware components that might contain defects, which can cause certificate trust updates to fail or behave unpredictably. This leads to potential disruption of the Secure Boot trust chain and requires careful validation and deployment to restore intended security guarantees.
| Certificate Authority (CA) | Location | Purpose | Expiration Date |
| ------ | ------ | ------ | ------ |
| Microsoft Corporation KEK CA 2011 | KEK | Signs updates to the DB and DBX | 06/24/2026 |
| Microsoft Corporation UEFI CA 2011 | DB | Signs 3rd party boot loaders, Option ROMs, etc. | 06/27/2026 |
| Microsoft Windows Production PCA 2011 | DB | Signs the Windows Boot Manager | 10/19/2026 |
For more information see this CVE and [Windows Secure Boot certificate expiration and CA updates](https://aka.ms/GetSecureBoot).
CVE-2026-0386 Windows Deployment Services Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper access control in Windows Deployment Services allows an unauthorized attacker to execute code over an adjacent network.
CVE-2026-20803 Microsoft SQL Server Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Missing authentication for critical function in SQL Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20965 Windows Admin Center Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper verification of cryptographic signature in Windows Admin Center allows an authorized attacker to elevate privileges locally.
CVE-2026-20804 Windows Hello Tampering Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.
CVE-2026-20805 Desktop Window Manager Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.
CVE-2026-20808 Windows File Explorer Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Printer Association Object allows an authorized attacker to elevate privileges locally.
CVE-2026-20809 Windows Kernel Memory Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Time-of-check time-of-use (toctou) race condition in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.
CVE-2026-20810 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Free of memory not on the heap in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-20811 Win32k Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Access of resource using incompatible type ('type confusion') in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
CVE-2026-20812 LDAPÂ Tampering Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper input validation in Windows LDAP - Lightweight Directory Access Protocol allows an authorized attacker to perform tampering over a network.
CVE-2026-20814 DirectX Graphics Kernel Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-20815 Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.
CVE-2026-20816 Windows Installer Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized attacker to elevate privileges locally.
CVE-2026-20817 Windows Error Reporting Service Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper handling of insufficient permissions or privileges in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
CVE-2026-20818 Windows Kernel Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Insertion of sensitive information into log file in Windows Kernel allows an unauthorized attacker to disclose information locally.
CVE-2026-20819 Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to disclose information locally.
CVE-2026-20820 Windows Common Log File System Driver Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
CVE-2026-20821 Remote Procedure Call Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an unauthorized attacker to disclose information locally.
CVE-2026-20822 Windows Graphics Component Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
CVE-2026-20824 Windows Remote Assistance Security Feature Bypass Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Protection mechanism failure in Windows Remote Assistance allows an unauthorized attacker to bypass a security feature locally.
CVE-2026-20825 Windows Hyper-V Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper access control in Windows Hyper-V allows an authorized attacker to disclose information locally.
CVE-2026-20826 Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Tablet Windows User Interface (TWINUI) Subsystem allows an authorized attacker to elevate privileges locally.
CVE-2026-20827 Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface (TWINUI) Subsystem allows an authorized attacker to disclose information locally.
CVE-2026-20828 Windows rndismp6.sys Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Out-of-bounds read in Windows Internet Connection Sharing (ICS) allows an unauthorized attacker to disclose information with a physical attack.
CVE-2026-20829 TPM Trustlet Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Out-of-bounds read in Windows TPM allows an authorized attacker to disclose information locally.
CVE-2026-20831 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Time-of-check time-of-use (toctou) race condition in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-20832 Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Information published.
CVE-2026-20833 Windows Kerberos Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use of a broken or risky cryptographic algorithm in Windows Kerberos allows an authorized attacker to disclose information locally.
CVE-2026-20834 Windows Spoofing Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Absolute path traversal in Windows Shell allows an unauthorized attacker to perform spoofing with a physical attack.
CVE-2026-20835 Capability Access Management Service (camsvc) Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Out-of-bounds read in Capability Access Management Service (camsvc) allows an authorized attacker to disclose information locally.
CVE-2026-20836 DirectX Graphics Kernel Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-20837 Windows Media Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally.
CVE-2026-20838 Windows Kernel Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Generation of error message containing sensitive information in Windows Kernel allows an authorized attacker to disclose information locally.
CVE-2026-20839 Windows Client-Side Caching (CSC) Service Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to disclose information locally.
CVE-2026-20840 Windows NTFS Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.
CVE-2026-20842 Microsoft DWM Core Library Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.
CVE-2026-20844 Windows Clipboard Server Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Clipboard Server allows an unauthorized attacker to elevate privileges locally.
CVE-2023-31096 MITRE: CVE-2023-31096 Windows Agere Soft Modem Driver Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Microsoft is aware of vulnerabilities in the third party Agere Soft Modem drivers that ship natively with supported Windows operating systems. This is an announcement of the removal of agrsm64.sys and agrsm.sys drivers. The drivers have been removed in the January 2026 cumulative update.
**Soft modem hardware dependent on these specific drivers will no longer work on Windows.**
Microsoft recommends removing any existing dependencies on this hardware.
This vulnerability was documented in 2023 via a [CVE-2023-31096](https://www.cve.org/CVERecord?id=CVE-2023-31096) issued by MITRE.
CVE-2026-20847 Microsoft Windows File Explorer Spoofing Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to perform spoofing over a network.
CVE-2026-20851 Capability Access Management Service (camsvc) Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Out-of-bounds read in Capability Access Management Service (camsvc) allows an unauthorized attacker to disclose information locally.
CVE-2026-20852 Windows Hello Tampering Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.
CVE-2026-20856 Windows Server Update Service (WSUS) Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper input validation in Windows Server Update Service allows an unauthorized attacker to execute code over a network.
CVE-2026-20857 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
CVE-2026-20858 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20859 Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.
CVE-2026-20860 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-20864 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.
CVE-2026-20865 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20869 Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Local Session Manager (LSM) allows an authorized attacker to elevate privileges locally.
CVE-2026-20875 Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Null pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.
CVE-2026-20876 Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.
CVE-2026-20877 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20918 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20919 Windows SMB Server Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20920 Win32k Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
CVE-2026-20921 Windows SMB Server Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20922 Windows NTFS Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.
CVE-2026-20923 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20924 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20925 NTLM Hash Disclosure Spoofing Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-20926 Windows SMB Server Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20927 Windows SMB Server Denial of Service Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to deny service over a network.
CVE-2026-20932 Windows File Explorer Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.
CVE-2026-20934 Windows SMB Server Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20938 Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.
CVE-2026-20940 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
CVE-2026-20943 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted search path in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-20944 Microsoft Word Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-20946 Microsoft Excel Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-20951 Microsoft SharePoint Server Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.
CVE-2026-20953 Microsoft Office Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-20955 Microsoft Excel Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-20956 Microsoft Excel Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-20959 Microsoft SharePoint Server Spoofing Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
CVE-2026-20963 Microsoft SharePoint Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
CVE-2026-20830 Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.
CVE-2026-21221 Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.
CVE-2026-21224 Azure Connected Machine Agent Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
ADV990001 Latest Servicing Stack Updates
Published on: 2026-01-13 08:00:00
Link: View Details
Advisory updated to announce new versions of Servicing Stack Updates are available. Please see the FAQ for details.
CVE-2026-20947 Microsoft SharePoint Server Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
CVE-2026-20843 Windows Routing and Remote Access Service (RRAS) Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper access control in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges locally.
CVE-2026-20848 Windows SMB Server Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.
CVE-2026-20849 Windows Kerberos Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Reliance on untrusted inputs in a security decision in Windows Kerberos allows an authorized attacker to elevate privileges over a network.
CVE-2026-20853 Windows WalletService Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows WalletService allows an unauthorized attacker to elevate privileges locally.
CVE-2026-20854 Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to execute code over a network.
CVE-2026-21219 Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
CVE-2026-20861 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20862 Windows Management Services Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Windows Management Services allows an authorized attacker to disclose information locally.
CVE-2026-20863 Win32k Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
CVE-2026-20866 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20867 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20868 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
CVE-2026-20870 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
CVE-2026-20871 Desktop Windows Manager Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally.
CVE-2026-20872 NTLM Hash Disclosure Spoofing Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-20873 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2026-20874 Windows Management Services Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.
CVE-2024-55414 Windows Motorola Soft Modem Driver Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Microsoft is aware of vulnerabilities in the third party Motorola Soft Modem drivers that ships natively with supported Windows operating systems.
This is an announcement of the upcoming removal of smserl64.sys and smserial.sys drivers. The drivers have been removed in the January cumulative update.
**Soft modem hardware dependent on these specific drivers will no longer work on Windows.**
Microsoft recommends removing any existing dependencies on this hardware.
CVE-2026-20929 Windows HTTP.sys Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper access control in Windows HTTP.sys allows an authorized attacker to elevate privileges over a network.
CVE-2026-20931 Windows Telephony Service Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
External control of file name or path in Windows Telephony Service allows an authorized attacker to elevate privileges over an adjacent network.
CVE-2026-20935 Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an unauthorized attacker to disclose information locally.
CVE-2026-20936 Windows NDIS Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Out-of-bounds read in Windows NDIS allows an authorized attacker to disclose information with a physical attack.
CVE-2026-20937 Windows File Explorer Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.
CVE-2026-20939 Windows File Explorer Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.
CVE-2026-20948 Microsoft Word Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-20949 Microsoft Excel Security Feature Bypass Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper access control in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally.
CVE-2026-20950 Microsoft Excel Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-20952 Microsoft Office Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-20957 Microsoft Excel Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-20958 Microsoft SharePoint Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Server-side request forgery (ssrf) in Microsoft Office SharePoint allows an authorized attacker to disclose information over a network.
CVE-2026-20941 Host Process for Windows Tasks Elevation of Privilege Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Improper link resolution before file access ('link following') in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally.
CVE-2026-21226 Azure Core shared client library for Python Remote Code Execution Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Deserialization of untrusted data in Azure Core shared client library for Python allows an authorized attacker to execute code over a network.
CVE-2026-20823 Windows File Explorer Information Disclosure Vulnerability
Published on: 2026-01-13 08:00:00
Link: View Details
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.
Chromium: CVE-2026-0628 Insufficient policy enforcement in WebView tag
Published on: 2026-01-09 08:00:09
Link: View Details
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.
CVE-2024-43901 drm/amd/display: Fix NULL pointer dereference for DTN log in DCN401
Published on: 2026-01-08 14:37:52
Link: View Details
Information published.
CVE-2024-43899 drm/amd/display: Fix null pointer deref in dcn20_resource.c
Published on: 2026-01-08 14:38:02
Link: View Details
Information published.
CVE-2024-43826 nfs: pass explicit offset/count to trace events
Published on: 2026-01-08 14:46:06
Link: View Details
Information published.
CVE-2024-43872 RDMA/hns: Fix soft lockup under heavy CEQE load
Published on: 2026-01-08 14:38:34
Link: View Details
Information published.
CVE-2024-43819 kvm: s390: Reject memory region operations for ucontrol VMs
Published on: 2026-01-08 14:38:54
Link: View Details
Information published.
CVE-2024-42317 mm/huge_memory: avoid PMD-size page cache if needed
Published on: 2026-01-08 14:51:05
Link: View Details
Information published.
CVE-2024-42107 ice: Don't process extts if PTP is disabled
Published on: 2026-01-08 14:49:43
Link: View Details
Information published.
CVE-2024-42064 drm/amd/display: Skip pipe if the pipe idx not set properly
Published on: 2026-01-08 14:36:20
Link: View Details
Information published.
CVE-2024-42065 drm/xe: Add a NULL check in xe_ttm_stolen_mgr_init
Published on: 2026-01-08 14:37:01
Link: View Details
Information published.
CVE-2024-42066 drm/xe: Fix potential integer overflow in page size calculation
Published on: 2026-01-08 14:36:40
Link: View Details
Information published.
CVE-2024-41045 bpf: Defer work in bpf_timer_cancel_and_free
Published on: 2026-01-08 14:45:32
Link: View Details
Information published.
CVE-2024-42151 bpf: mark bpf_dummy_struct_ops.test_1 parameter as nullable
Published on: 2026-01-08 14:47:57
Link: View Details
Information published.
CVE-2024-41008 drm/amdgpu: change vm->task_info handling
Published on: 2026-01-08 14:38:02
Link: View Details
Information published.
CVE-2024-41082 nvme-fabrics: use reserved tag for reg read/write command
Published on: 2026-01-08 14:46:23
Link: View Details
Information published.
CVE-2024-42134 virtio-pci: Check if is_avq is NULL
Published on: 2026-01-08 14:48:12
Link: View Details
Information published.
CVE-2024-40999 net: ena: Add validation for completion descriptors consistency
Published on: 2026-01-08 14:47:28
Link: View Details
Information published.
CVE-2024-42118 drm/amd/display: Do not return negative stream id for array
Published on: 2026-01-08 14:47:45
Link: View Details
Information published.
CVE-2024-39478 crypto: starfive - Do not free stack buffer
Published on: 2026-01-08 14:48:19
Link: View Details
Information published.
CVE-2024-41067 btrfs: scrub: handle RST lookup error correctly
Published on: 2026-01-08 14:50:33
Link: View Details
Information published.
CVE-2024-42081 drm/xe/xe_devcoredump: Check NULL before assignments
Published on: 2026-01-08 14:36:51
Link: View Details
Information published.
CVE-2025-38333 f2fs: fix to bail out in get_new_segment()
Published on: 2026-01-08 14:41:58
Link: View Details
Information published.
CVE-2025-1220 Null byte termination in hostnames
Published on: 2026-01-08 14:43:02
Link: View Details
Information published.
CVE-2025-38257 s390/pkey: Prevent overflow in size calculation for memdup_user()
Published on: 2026-01-08 01:39:24
Link: View Details
Information published.
CVE-2025-38437 ksmbd: fix potential use-after-free in oplock/lease break ack
Published on: 2026-01-08 01:39:46
Link: View Details
Information published.
CVE-2025-38201 netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX
Published on: 2026-01-08 14:41:08
Link: View Details
Information published.
CVE-2025-38234 sched/rt: Fix race in push_rt_task
Published on: 2026-01-08 14:41:18
Link: View Details
Information published.
CVE-2025-38426 drm/amdgpu: Add basic validation for RAS header
Published on: 2026-01-08 14:43:45
Link: View Details
Information published.
CVE-2025-38232 NFSD: fix race between nfsd registration and exports_proc
Published on: 2026-01-08 14:41:28
Link: View Details
Information published.
CVE-2025-38359 s390/mm: Fix in_atomic() handling in do_secure_storage_access()
Published on: 2026-01-08 14:43:55
Link: View Details
Information published.
CVE-2025-7067 HDF5 H5FScache.c H5FS__sinfo_serialize_node_cb heap-based overflow
Published on: 2026-01-08 14:43:25
Link: View Details
Information published.
CVE-2025-7068 HDF5 H5FL.c H5FL__malloc memory leak
Published on: 2026-01-08 14:43:14
Link: View Details
Information published.
CVE-2025-38361 drm/amd/display: Check dce_hwseq before dereferencing it
Published on: 2026-01-08 14:44:05
Link: View Details
Information published.
CVE-2025-38264 nvme-tcp: sanitize request list handling
Published on: 2026-01-08 14:41:39
Link: View Details
Information published.
CVE-2025-38248 bridge: mcast: Fix use-after-free during router port configuration
Published on: 2026-01-08 14:41:48
Link: View Details
Information published.
CVE-2025-38125 net: stmmac: make sure that ptp_rate is not 0 before configuring EST
Published on: 2026-01-08 14:40:27
Link: View Details
Information published.
CVE-2025-38480 comedi: Fix use of uninitialized data in insn_rw_emulate_bits()
Published on: 2026-01-08 01:01:14
Link: View Details
Information published.
CVE-2025-38483 comedi: das16m1: Fix bit shift out of bounds
Published on: 2026-01-08 01:01:30
Link: View Details
Information published.
CVE-2025-38495 HID: core: ensure the allocated report buffer can contain the reserved report ID
Published on: 2026-01-08 01:01:56
Link: View Details
Information published.
CVE-2025-38476 rpl: Fix use-after-free in rpl_do_srh_inline().
Published on: 2026-01-08 01:39:51
Link: View Details
Information published.
CVE-2025-38481 comedi: Fail COMEDI_INSNLIST ioctl if n_insns is too large
Published on: 2026-01-08 01:01:20
Link: View Details
Information published.
CVE-2025-38487 soc: aspeed: lpc-snoop: Don't disable channels that aren't enabled
Published on: 2026-01-08 01:01:40
Link: View Details
Information published.
CVE-2025-38162 netfilter: nft_set_pipapo: prevent overflow in lookup table allocation
Published on: 2026-01-08 14:40:38
Link: View Details
Information published.
CVE-2025-38485 iio: accel: fxls8962af: Fix use after free in fxls8962af_fifo_flush
Published on: 2026-01-08 01:01:35
Link: View Details
Information published.
CVE-2025-38482 comedi: das6402: Fix bit shift out of bounds
Published on: 2026-01-08 01:01:25
Link: View Details
Information published.
CVE-2025-38497 usb: gadget: configfs: Fix OOB read on empty string write
Published on: 2026-01-08 01:02:01
Link: View Details
Information published.
CVE-2025-38491 mptcp: make fallback action and fallback decision atomic
Published on: 2026-01-08 01:01:51
Link: View Details
Information published.
CVE-2025-38303 Bluetooth: eir: Fix possible crashes on eir_create_adv_data
Published on: 2026-01-08 14:42:09
Link: View Details
Information published.
CVE-2025-38279 bpf: Do not include stack ptr register in precision backtracking bookkeeping
Published on: 2026-01-08 14:42:21
Link: View Details
Information published.
CVE-2025-38269 btrfs: exit after state insertion failure at btrfs_convert_extent_bit()
Published on: 2026-01-08 14:42:31
Link: View Details
Information published.
CVE-2025-38096 wifi: iwlwifi: don't warn when if there is a FW error
Published on: 2026-01-08 14:40:58
Link: View Details
Information published.
CVE-2025-38272 net: dsa: b53: do not enable EEE on bcm63xx
Published on: 2026-01-08 14:42:41
Link: View Details
Information published.
CVE-2025-51480 Path Traversal vulnerability in onnx.external_data_helper.save_external_data in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted external_data.location paths containing traversal sequences, bypassing intended directory restrictions.
Published on: 2026-01-08 14:43:35
Link: View Details
Information published.
CVE-2025-38488 smb: client: fix use-after-free in crypt_message when using async crypto
Published on: 2026-01-08 01:01:46
Link: View Details
Information published.
CVE-2025-38131 coresight: prevent deactivate active config while enabling the config
Published on: 2026-01-08 01:39:09
Link: View Details
Information published.
CVE-2025-38230 jfs: validate AG parameters in dbMount() to prevent crashes
Published on: 2026-01-08 01:39:19
Link: View Details
Information published.
CVE-2025-38259 ASoC: codecs: wcd9335: Fix missing free of regulator supplies
Published on: 2026-01-08 01:39:29
Link: View Details
Information published.
CVE-2025-38425 i2c: tegra: check msg length in SMBUS block read
Published on: 2026-01-08 01:39:56
Link: View Details
Information published.
CVE-2025-38311 iavf: get rid of the crit lock
Published on: 2026-01-08 14:42:52
Link: View Details
Information published.
CVE-2025-38140 dm: limit swapping tables for devices with zone write plugs
Published on: 2026-01-08 14:40:48
Link: View Details
Information published.
CVE-2025-38377 rose: fix dangling neighbour pointers in rose_rt_device_down()
Published on: 2026-01-08 01:39:34
Link: View Details
Information published.
CVE-2023-27043 The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.
Published on: 2026-01-08 14:35:46
Link: View Details
Information published.
CVE-2025-21696 mm: clear uffd-wp PTE/PMD state on mremap()
Published on: 2026-01-08 14:36:51
Link: View Details
Information published.
CVE-2025-21768 net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels
Published on: 2026-01-08 14:46:15
Link: View Details
Information published.
CVE-2024-57974 udp: Deal with race between UDP socket address change and rehash
Published on: 2026-01-08 14:46:46
Link: View Details
Information published.
CVE-2024-57994 ptr_ring: do not block hard interrupts in ptr_ring_resize_multiple()
Published on: 2026-01-08 14:47:02
Link: View Details
Information published.
CVE-2025-1151 GNU Binutils ld xmemdup.c xmemdup memory leak
Published on: 2026-01-08 14:36:21
Link: View Details
Information published.
CVE-2025-21801 net: ravb: Fix missing rtnl lock in suspend/resume path
Published on: 2026-01-08 14:48:02
Link: View Details
Information published.
CVE-2025-1149 GNU Binutils ld xmalloc.c xstrdup memory leak
Published on: 2026-01-08 14:36:41
Link: View Details
Information published.
CVE-2024-57976 btrfs: do proper folio cleanup when cow_file_range() failed
Published on: 2026-01-08 14:48:45
Link: View Details
Information published.
CVE-2025-21732 RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error
Published on: 2026-01-08 14:49:27
Link: View Details
Information published.
CVE-2025-21786 workqueue: Put the pwq after detaching the rescuer from the pool
Published on: 2026-01-08 14:39:41
Link: View Details
Information published.
CVE-2025-21693 mm: zswap: properly synchronize freeing resources during CPU hotunplug
Published on: 2026-01-08 14:40:44
Link: View Details
Information published.
CVE-2025-1744 Out-of-bounds Write in radare2
Published on: 2026-01-08 01:40:54
Link: View Details
Information published.
CVE-2025-1152 GNU Binutils ld xstrdup.c xstrdup memory leak
Published on: 2026-01-08 14:36:31
Link: View Details
Information published.
CVE-2024-58006 PCI: dwc: ep: Prevent changing BAR size/flags in pci_epc_set_bar()
Published on: 2026-01-08 14:36:18
Link: View Details
Information published.
CVE-2024-23848 In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.
Published on: 2026-01-08 14:35:15
Link: View Details
Information published.
CVE-2024-57872 scsi: ufs: pltfrm: Dellocate HBA during ufshcd_pltfrm_remove()
Published on: 2026-01-08 14:50:40
Link: View Details
Information published.
CVE-2024-56775 drm/amd/display: Fix handling of plane refcount
Published on: 2026-01-08 14:50:07
Link: View Details
Information published.
CVE-2024-57875 block: RCU protect disk->conv_zones_bitmap
Published on: 2026-01-08 14:49:01
Link: View Details
Information published.
CVE-2024-41932 sched: fix warning in sched_setaffinity
Published on: 2026-01-08 14:49:10
Link: View Details
Information published.
CVE-2024-57804 scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs
Published on: 2026-01-08 14:49:59
Link: View Details
Information published.
CVE-2024-57898 wifi: cfg80211: clear link ID from bitmap during link delete after clean up
Published on: 2026-01-08 14:50:48
Link: View Details
Information published.
CVE-2025-21635 rds: sysctl: rds_tcp_{rcv,snd}buf: avoid using current->nsproxy
Published on: 2026-01-08 14:37:14
Link: View Details
Information published.
CVE-2025-21682 eth: bnxt: always recalculate features after XDP clearing, fix null-deref
Published on: 2026-01-08 14:36:10
Link: View Details
Information published.
CVE-2024-57809 PCI: imx6: Fix suspend/resume support on i.MX6QDL
Published on: 2026-01-08 14:46:38
Link: View Details
Information published.
CVE-2024-56782 ACPI: x86: Add adev NULL check to acpi_quirk_skip_serdev_enumeration()
Published on: 2026-01-08 14:50:16
Link: View Details
Information published.
CVE-2024-47794 bpf: Prevent tailcall infinite loop caused by freplace
Published on: 2026-01-08 14:51:00
Link: View Details
Information published.
CVE-2024-57857 RDMA/siw: Remove direct link to net_device
Published on: 2026-01-08 14:40:23
Link: View Details
Information published.
CVE-2024-35808 md/dm-raid: don't call md_reap_sync_thread() directly
Published on: 2026-01-08 14:37:31
Link: View Details
Information published.
CVE-2024-35931 drm/amdgpu: Skip do PCI error slot reset during RAS recovery
Published on: 2026-01-08 14:47:54
Link: View Details
Information published.
CVE-2024-36024 drm/amd/display: Disable idle reallow as part of command/gpint execution
Published on: 2026-01-08 14:36:59
Link: View Details
Information published.
CVE-2024-35794 dm-raid: really frozen sync_thread during suspend
Published on: 2026-01-08 14:49:43
Link: View Details
Information published.
CVE-2025-37907 accel/ivpu: Fix locking order in ivpu_job_submit
Published on: 2026-01-08 14:37:09
Link: View Details
Information published.
CVE-2025-37834 mm/vmscan: don't try to reclaim hwpoison folio
Published on: 2026-01-08 14:47:11
Link: View Details
Information published.
CVE-2025-37870 drm/amd/display: prevent hang on link training fail
Published on: 2026-01-08 14:47:20
Link: View Details
Information published.
CVE-2025-37920 xsk: Fix race condition in AF_XDP generic RX path
Published on: 2026-01-08 14:47:37
Link: View Details
Information published.
CVE-2025-37877 iommu: Clear iommu-dma ops on cleanup
Published on: 2026-01-08 14:48:27
Link: View Details
Information published.
CVE-2025-37826 scsi: ufs: core: Add NULL check in ufshcd_mcq_compl_pending_transfer()
Published on: 2026-01-08 14:48:36
Link: View Details
Information published.
CVE-2025-37745 PM: hibernate: Avoid deadlock in hibernate_compressor_param_set()
Published on: 2026-01-08 14:50:17
Link: View Details
Information published.
CVE-2025-37856 btrfs: harden block_group::bg_list against list_del() races
Published on: 2026-01-08 14:35:39
Link: View Details
Information published.
CVE-2025-37882 usb: xhci: Fix isochronous Ring Underrun/Overrun event handling
Published on: 2026-01-08 14:35:49
Link: View Details
Information published.
CVE-2025-37822 riscv: uprobes: Add missing fence.i after building the XOL buffer
Published on: 2026-01-08 14:35:59
Link: View Details
Information published.
CVE-2025-44905 hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5Z__filter_scaleoffset function.
Published on: 2026-01-08 14:44:50
Link: View Details
Information published.
CVE-2025-37945 net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY
Published on: 2026-01-08 14:39:31
Link: View Details
Information published.
CVE-2025-37861 scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue
Published on: 2026-01-08 14:45:01
Link: View Details
Information published.
CVE-2025-37807 bpf: Fix kmemleak warning for percpu hashmap
Published on: 2026-01-08 14:35:20
Link: View Details
Information published.
CVE-2025-37747 perf: Fix hang while freeing sigtrap event
Published on: 2026-01-08 14:37:14
Link: View Details
Information published.
CVE-2025-37750 smb: client: fix UAF in decryption with multichannel
Published on: 2026-01-08 14:37:24
Link: View Details
Information published.
CVE-2023-52586 drm/msm/dpu: Add mutex lock in control vblank irq
Published on: 2026-01-08 14:37:02
Link: View Details
Information published.
CVE-2023-52624 drm/amd/display: Wake DMCUB before executing GPINT commands
Published on: 2026-01-08 14:38:38
Link: View Details
Information published.
CVE-2024-26672 drm/amdgpu: Fix variable 'mca_funcs' dereferenced before NULL check in 'amdgpu_mca_smu_get_mca_entry()'
Published on: 2026-01-08 14:43:18
Link: View Details
Information published.
CVE-2024-26757 md: Don't ignore read-only array in md_check_recovery()
Published on: 2026-01-08 14:42:45
Link: View Details
Information published.
CVE-2024-26758 md: Don't ignore suspended array in md_check_recovery()
Published on: 2026-01-08 14:42:35
Link: View Details
Information published.
CVE-2024-26756 md: Don't register sync_thread for reshape directly
Published on: 2026-01-08 14:38:48
Link: View Details
Information published.
CVE-2024-26914 drm/amd/display: fix incorrect mpc_combine array size
Published on: 2026-01-08 14:36:48
Link: View Details
Information published.
CVE-2024-24856 NULL pointer deference in acpi_db_convert_to_package of Linux acpi module
Published on: 2026-01-08 14:50:55
Link: View Details
Information published.
CVE-2025-39764 netfilter: ctnetlink: remove refcounting in expectation dumpers
Published on: 2026-01-08 14:46:25
Link: View Details
Information published.
CVE-2025-39779 btrfs: subpage: keep TOWRITE tag until folio is cleaned
Published on: 2026-01-08 14:46:33
Link: View Details
Information published.
CVE-2025-39754 mm/smaps: fix race between smaps_hugetlb_range and migration
Published on: 2026-01-08 14:46:41
Link: View Details
Information published.
CVE-2025-39762 drm/amd/display: add null check
Published on: 2026-01-08 14:46:50
Link: View Details
Information published.
CVE-2025-39746 wifi: ath10k: shutdown driver when hardware is unreliable
Published on: 2026-01-08 14:46:58
Link: View Details
Information published.
CVE-2025-39747 drm/msm: Add error handling for krealloc in metadata setup
Published on: 2026-01-08 14:47:07
Link: View Details
Information published.
CVE-2025-39789 crypto: x86/aegis - Add missing error checks
Published on: 2026-01-08 14:47:16
Link: View Details
Information published.
CVE-2025-39748 bpf: Forget ranges when refining tnum after JSET
Published on: 2026-01-08 14:47:24
Link: View Details
Information published.
CVE-2025-39833 mISDN: hfcpci: Fix warning when deleting uninitialized timer
Published on: 2026-01-08 14:47:32
Link: View Details
Information published.
CVE-2025-39850 vxlan: Fix NPD in {arp,neigh}_reduce() when using nexthop objects
Published on: 2026-01-08 14:48:06
Link: View Details
Information published.
CVE-2025-39859 ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog
Published on: 2026-01-08 14:48:15
Link: View Details
Information published.
CVE-2025-55551 An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.
Published on: 2026-01-08 14:48:48
Link: View Details
Information published.
CVE-2025-38705 drm/amd/pm: fix null pointer access
Published on: 2026-01-08 14:45:17
Link: View Details
Information published.
CVE-2025-38722 habanalabs: fix UAF in export_dmabuf()
Published on: 2026-01-08 14:45:26
Link: View Details
Information published.
CVE-2025-38717 net: kcm: Fix race condition in kcm_unattach()
Published on: 2026-01-08 14:45:35
Link: View Details
Information published.
CVE-2025-38704 rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer access
Published on: 2026-01-08 14:45:44
Link: View Details
Information published.
CVE-2025-39705 drm/amd/display: fix a Null pointer dereference vulnerability
Published on: 2026-01-08 14:45:52
Link: View Details
Information published.
CVE-2025-39677 net/sched: Fix backlog accounting in qdisc_dequeue_internal
Published on: 2026-01-08 14:46:00
Link: View Details
Information published.
CVE-2025-39707 drm/amdgpu: check if hubbub is NULL in debugfs/amdgpu_dm_capabilities
Published on: 2026-01-08 14:46:08
Link: View Details
Information published.
CVE-2025-9901 Libsoup: improper handling of http vary header in libsoup caching
Published on: 2026-01-08 14:46:16
Link: View Details
Information published.
CVE-2025-39810 bnxt_en: Fix memory corruption when FW resources change during ifdown
Published on: 2026-01-08 14:47:40
Link: View Details
Information published.
CVE-2025-39851 vxlan: Fix NPD when refreshing an FDB entry with a nexthop object
Published on: 2026-01-08 14:47:49
Link: View Details
Information published.
CVE-2025-39862 wifi: mt76: mt7915: fix list corruption after hardware restart
Published on: 2026-01-08 14:47:57
Link: View Details
Information published.
CVE-2025-55554 pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().
Published on: 2026-01-08 14:48:56
Link: View Details
Information published.
CVE-2024-58241 Bluetooth: hci_core: Disable works on hci_unregister_dev
Published on: 2026-01-08 14:44:27
Link: View Details
Information published.
CVE-2025-68753 ALSA: firewire-motu: add bounds check in put_user loop for DSP events
Published on: 2026-01-08 01:40:44
Link: View Details
Information published.
CVE-2025-68766 irqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc()
Published on: 2026-01-08 01:40:49
Link: View Details
Information published.
CVE-2025-68266 bfs: Reconstruct file type when loading from disk
Published on: 2026-01-08 01:38:20
Link: View Details
Information published.
CVE-2025-68303 platform/x86: intel: punit_ipc: fix memory corruption
Published on: 2026-01-08 01:38:41
Link: View Details
Information published.
CVE-2025-68301 net: atlantic: fix fragment overflow handling in RX path
Published on: 2026-01-08 01:38:53
Link: View Details
Information published.
CVE-2025-68290 most: usb: fix double free on late probe failure
Published on: 2026-01-08 01:38:59
Link: View Details
Information published.
CVE-2025-68729 wifi: ath12k: Fix MSDU buffer types handling in RX error path
Published on: 2026-01-08 01:40:01
Link: View Details
Information published.
CVE-2025-68346 ALSA: dice: fix buffer overflow in detect_stream_formats()
Published on: 2026-01-08 01:40:11
Link: View Details
Information published.
CVE-2025-66293 LIBPNG has an out-of-bounds read in png_image_read_composite
Published on: 2026-01-08 01:37:57
Link: View Details
Information published.
CVE-2025-68255 staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing
Published on: 2026-01-08 01:38:15
Link: View Details
Information published.
CVE-2025-68256 staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser
Published on: 2026-01-08 01:38:25
Link: View Details
Information published.
CVE-2025-2296 Un-verified kernel bypass Secure Boot mechanism in direct boot mode
Published on: 2026-01-08 01:38:35
Link: View Details
Information published.
CVE-2025-68311 tty: serial: ip22zilog: Use platform device for probing
Published on: 2026-01-08 01:38:46
Link: View Details
Information published.
CVE-2025-68287 usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths
Published on: 2026-01-08 01:39:04
Link: View Details
Information published.
CVE-2025-68156 Expr has Denial of Service via Unbounded Recursion in Builtin Functions
Published on: 2026-01-08 01:39:14
Link: View Details
Information published.
CVE-2025-68476 KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential
Published on: 2026-01-08 01:39:41
Link: View Details
Information published.
CVE-2025-68367 macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse
Published on: 2026-01-08 01:40:06
Link: View Details
Information published.
CVE-2025-68380 wifi: ath11k: fix peer HE MCS assignment
Published on: 2026-01-08 01:40:16
Link: View Details
Information published.
CVE-2025-34468 libcoap Stack-Based Buffer Overflow in Address Resolution DoS or Potential RCE
Published on: 2026-01-08 01:40:21
Link: View Details
Information published.
CVE-2025-15284 arrayLimit bypass in bracket notation allows DoS via memory exhaustion
Published on: 2026-01-08 01:40:35
Link: View Details
Information published.
CVE-2025-38644 wifi: mac80211: reject TDLS operations when station is not associated
Published on: 2026-01-08 01:02:42
Link: View Details
Information published.
CVE-2025-38630 fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref
Published on: 2026-01-08 01:02:22
Link: View Details
Information published.
CVE-2025-38639 netfilter: xt_nfacct: don't assume acct name is null-terminated
Published on: 2026-01-08 01:02:37
Link: View Details
Information published.
CVE-2025-38499 clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns
Published on: 2026-01-08 01:02:06
Link: View Details
Information published.
CVE-2025-38635 clk: davinci: Add NULL check in davinci_lpsc_clk_register()
Published on: 2026-01-08 01:02:32
Link: View Details
Information published.
CVE-2025-38624 PCI: pnv_php: Clean up allocated IRQs on unplug
Published on: 2026-01-08 01:02:17
Link: View Details
Information published.
CVE-2025-38634 power: supply: cpcap-charger: Fix null check for power_supply_get_by_name
Published on: 2026-01-08 01:02:27
Link: View Details
Information published.
CVE-2025-38502 bpf: Fix oob access in cgroup local storage
Published on: 2026-01-08 01:02:12
Link: View Details
Information published.
CVE-2025-62224 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
Published on: 2026-01-07 08:00:00
Link: View Details
User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network.
CVE-2025-40258 mptcp: fix race condition in mptcp_schedule_work()
Published on: 2026-01-07 14:36:23
Link: View Details
Information published.
CVE-2025-40254 net: openvswitch: remove never-working support for setting nsh fields
Published on: 2026-01-07 14:36:30
Link: View Details
Information published.
CVE-2025-40252 net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()
Published on: 2026-01-07 14:36:43
Link: View Details
Information published.
CVE-2025-40264 be2net: pass wrb_params in case of OS2BMC
Published on: 2026-01-07 14:36:56
Link: View Details
Information published.
CVE-2025-40250 net/mlx5: Clean up only new IRQ glue on request_irq() failure
Published on: 2026-01-07 14:37:02
Link: View Details
Information published.
CVE-2025-40251 devlink: rate: Unset parent pointer in devl_rate_nodes_destroy
Published on: 2026-01-07 14:37:09
Link: View Details
Information published.
CVE-2025-68198 crash: fix crashkernel resource shrink
Published on: 2026-01-07 14:37:45
Link: View Details
Information published.
CVE-2025-68231 mm/mempool: fix poisoning order>0 pages with HIGHMEM
Published on: 2026-01-07 14:37:52
Link: View Details
Information published.
CVE-2025-68219 cifs: fix memory leak in smb3_fs_context_parse_param error path
Published on: 2026-01-07 14:38:05
Link: View Details
Information published.
CVE-2025-68237 mtdchar: fix integer overflow in read/write ioctls
Published on: 2026-01-07 14:38:38
Link: View Details
Information published.
CVE-2025-68233 drm/tegra: Add call to put_pid()
Published on: 2026-01-07 14:38:58
Link: View Details
Information published.
CVE-2025-68285 libceph: fix potential use-after-free in have_mon_and_osd_map()
Published on: 2026-01-07 14:39:18
Link: View Details
Information published.
CVE-2025-68290 most: usb: fix double free on late probe failure
Published on: 2026-01-07 14:40:04
Link: View Details
Information published.
CVE-2025-68331 usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer
Published on: 2026-01-07 14:40:40
Link: View Details
Information published.
CVE-2025-68327 usb: renesas_usbhs: Fix synchronous external abort on unbind
Published on: 2026-01-07 14:40:47
Link: View Details
Information published.
CVE-2025-68330 iio: accel: bmc150: Fix irq assumption regression
Published on: 2026-01-07 14:40:53
Link: View Details
Information published.
CVE-2025-40261 nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl()
Published on: 2026-01-07 14:36:10
Link: View Details
Information published.
CVE-2025-40257 mptcp: fix a race in mptcp_pm_del_add_timer()
Published on: 2026-01-07 14:36:16
Link: View Details
Information published.
CVE-2025-40259 scsi: sg: Do not sleep in atomic context
Published on: 2026-01-07 14:36:36
Link: View Details
Information published.
CVE-2025-40248 vsock: Ignore signal/timeout on connect() if already established
Published on: 2026-01-07 14:36:49
Link: View Details
Information published.
CVE-2025-40266 KVM: arm64: Check the untrusted offset in FF-A memory share
Published on: 2026-01-07 14:37:17
Link: View Details
Information published.
CVE-2025-40345 usb: storage: sddr55: Reject out-of-bound new_pba
Published on: 2026-01-07 14:37:39
Link: View Details
Information published.
CVE-2025-68235 nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot
Published on: 2026-01-07 14:37:58
Link: View Details
Information published.
CVE-2025-68229 scsi: target: tcm_loop: Fix segfault in tcm_loop_tpg_address_show()
Published on: 2026-01-07 14:38:12
Link: View Details
Information published.
CVE-2025-68214 timers: Fix NULL function pointer race in timer_shutdown_sync()
Published on: 2026-01-07 14:38:19
Link: View Details
Information published.
CVE-2025-68204 pmdomain: arm: scmi: Fix genpd leak on provider registration failure
Published on: 2026-01-07 14:38:25
Link: View Details
Information published.
CVE-2025-68227 mptcp: Fix proto fallback detection with BPF
Published on: 2026-01-07 14:38:32
Link: View Details
Information published.
CVE-2025-68220 net: ethernet: ti: netcp: Standardize knav_dma_open_channel to return NULL on error
Published on: 2026-01-07 14:38:45
Link: View Details
Information published.
CVE-2025-68222 pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc
Published on: 2026-01-07 14:38:51
Link: View Details
Information published.
CVE-2025-68217 Input: pegasus-notetaker - fix potential out-of-bounds access
Published on: 2026-01-07 14:39:04
Link: View Details
Information published.
CVE-2025-68282 usb: gadget: udc: fix use-after-free in usb_gadget_state_work
Published on: 2026-01-07 14:39:11
Link: View Details
Information published.
CVE-2025-68283 libceph: replace BUG_ON with bounds check for map->max_osd
Published on: 2026-01-07 14:39:25
Link: View Details
Information published.
CVE-2025-68307 can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs
Published on: 2026-01-07 14:39:31
Link: View Details
Information published.
CVE-2025-68286 drm/amd/display: Check NULL before accessing
Published on: 2026-01-07 14:39:38
Link: View Details
Information published.
CVE-2025-68295 smb: client: fix memory leak in cifs_construct_tcon()
Published on: 2026-01-07 14:39:44
Link: View Details
Information published.
CVE-2025-68288 usb: storage: Fix memory leak in USB bulk transport
Published on: 2026-01-07 14:39:51
Link: View Details
Information published.
CVE-2025-68284 libceph: prevent potential out-of-bounds writes in handle_auth_session_key()
Published on: 2026-01-07 14:39:57
Link: View Details
Information published.
CVE-2025-68308 can: kvaser_usb: leaf: Fix potential infinite loop in command parsers
Published on: 2026-01-07 14:40:11
Link: View Details
Information published.
CVE-2025-68287 usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths
Published on: 2026-01-07 14:40:17
Link: View Details
Information published.
CVE-2025-68289 usb: gadget: f_eem: Fix memory leak in eem_unwrap
Published on: 2026-01-07 14:40:24
Link: View Details
Information published.
CVE-2025-68302 net: sxgbe: fix potential NULL dereference in sxgbe_rx()
Published on: 2026-01-07 14:40:31
Link: View Details
Information published.
CVE-2025-68328 firmware: stratix10-svc: fix bug in saving controller data
Published on: 2026-01-07 14:41:00
Link: View Details
Information published.
CVE-2025-68339 atm/fore200e: Fix possible data race in fore200e_open()
Published on: 2026-01-07 14:41:07
Link: View Details
Information published.
CVE-2025-68342 can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data
Published on: 2026-01-07 14:41:13
Link: View Details
Information published.
CVE-2025-68343 can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header
Published on: 2026-01-07 14:41:20
Link: View Details
Information published.
CVE-2025-38627 f2fs: compress: fix UAF of f2fs_inode_info in f2fs_free_dic
Published on: 2026-01-07 14:35:33
Link: View Details
Information published.
CVE-2025-38643 wifi: cfg80211: Add missing lock in cfg80211_check_and_end_cac()
Published on: 2026-01-07 14:35:40
Link: View Details
Information published.
CVE-2025-38556 HID: core: Harden s32ton() against conversion to 0 bits
Published on: 2026-01-07 14:35:28
Link: View Details
Information published.
CVE-2025-22105 bonding: check xdp prog when set bond mode
Published on: 2026-01-07 14:35:21
Link: View Details
Information published.
CVE-2025-39805 net: macb: fix unregister_netdev call order in macb_remove()
Published on: 2026-01-07 14:35:45
Link: View Details
Information published.
CVE-2025-1744 Out-of-bounds Write in radare2
Published on: 2026-01-07 01:01:17
Link: View Details
Information published.
CVE-2025-4432 Ring: some aes functions may panic when overflow checking is enabled in ring
Published on: 2026-01-07 01:01:35
Link: View Details
Information published.
CVE-2025-68972 In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.
Published on: 2026-01-06 14:36:03
Link: View Details
Information published.
CVE-2025-68476 KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential
Published on: 2026-01-06 14:35:56
Link: View Details
Information published.
CVE-2025-68973 In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)
Published on: 2026-01-06 14:36:10
Link: View Details
Information published.
CVE-2025-11961 OOBR and OOBW in pcap_ether_aton() in libpcap
Published on: 2026-01-06 01:35:35
Link: View Details
Information published.
CVE-2025-11964 OOBW in utf_16le_to_utf_8_truncated() in libpcap
Published on: 2026-01-06 01:35:42
Link: View Details
Information published.
CVE-2025-62408 c-ares has a Use After Free vulnerability when connection is cleaned up after error
Published on: 2026-01-05 14:36:12
Link: View Details
Information published.
CVE-2025-61594 URI Credential Leakage Bypass over CVE-2025-27221
Published on: 2026-01-05 14:36:39
Link: View Details
Information published.
CVE-2025-3001 PyTorch torch.lstm_cell memory corruption
Published on: 2026-01-05 01:38:00
Link: View Details
Information published.
CVE-2000-0006 strace allows local users to read arbitrary files via memory mapped file names.
Published on: 2026-01-04 14:35:13
Link: View Details
Information published.
CVE-2023-52970 MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, 11.0 through 11.0.*, and 11.1 through 11.4.* crashes in Item_direct_view_ref::derived_field_transformer_for_where.
Published on: 2026-01-03 01:36:09
Link: View Details
Information published.
CVE-2023-52969 MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, and 11.0 through 11.0.* can sometimes crash with an empty backtrace log. This may be related to make_aggr_tables_info and optimize_stage2.
Published on: 2026-01-03 01:36:21
Link: View Details
Information published.
CVE-2025-2912 HDF5 H5Omessage.c H5O_msg_flush heap-based overflow
Published on: 2026-01-03 01:36:40
Link: View Details
Information published.
CVE-2024-7598 Network restriction bypass via race condition during namespace termination
Published on: 2026-01-03 01:36:35
Link: View Details
Information published.
CVE-2025-2295 Potential iSCSI R2T PDU Vulnerability
Published on: 2026-01-03 01:36:30
Link: View Details
Information published.
CVE-2025-52881 runc: LSM labels can be bypassed with malicious config using dummy procfs files
Published on: 2026-01-03 01:39:17
Link: View Details
Information published.
CVE-2025-61662 Grub2: missing unregister call for gettext command may lead to use-after-free
Published on: 2026-01-03 01:38:57
Link: View Details
Information published.
CVE-2025-61663 Grub2: missing unregister call for normal commands may lead to use-after-free
Published on: 2026-01-03 01:39:02
Link: View Details
Information published.
CVE-2025-61661 Grub2: grub2: out-of-bounds write via malicious usb device
Published on: 2026-01-03 01:39:08
Link: View Details
Information published.
CVE-2025-2486 UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu
Published on: 2026-01-03 01:39:24
Link: View Details
Information published.
CVE-2025-65637 A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters.
Published on: 2026-01-03 01:40:04
Link: View Details
Information published.
CVE-2025-14087 Glib: glib: buffer underflow in gvariant parser leads to heap corruption
Published on: 2026-01-03 01:40:11
Link: View Details
Information published.
CVE-2025-13912 Potential non-constant time compiled code with Clang LLVM
Published on: 2026-01-03 01:40:44
Link: View Details
Information published.
CVE-2025-14180 NULL Pointer Dereference in PDO quoting
Published on: 2026-01-03 01:36:31
Link: View Details
Information published.
CVE-2025-14512 Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow
Published on: 2026-01-03 01:40:17
Link: View Details
Information published.
CVE-2025-14104 Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames
Published on: 2026-01-03 01:40:23
Link: View Details
Information published.
CVE-2025-68146 filelock has TOCTOU race condition that allows symlink attacks during lock file creation
Published on: 2026-01-03 01:41:03
Link: View Details
Information published.
CVE-2025-13699 MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability
Published on: 2026-01-03 01:36:02
Link: View Details
Information published.
CVE-2025-14177 Information Leak of Memory in getimagesize
Published on: 2026-01-03 01:36:13
Link: View Details
Information published.
CVE-2025-14178 Heap buffer overflow in array_merge()
Published on: 2026-01-03 01:36:22
Link: View Details
Information published.
CVE-2025-68973 In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)
Published on: 2026-01-03 01:02:22
Link: View Details
Information published.
CVE-2025-34468 libcoap Stack-Based Buffer Overflow in Address Resolution DoS or Potential RCE
Published on: 2026-01-03 01:01:22
Link: View Details
Information published.
CVE-2025-11961 OOBR and OOBW in pcap_ether_aton() in libpcap
Published on: 2026-01-03 01:01:36
Link: View Details
Information published.
CVE-2025-11964 OOBW in utf_16le_to_utf_8_truncated() in libpcap
Published on: 2026-01-03 01:01:49
Link: View Details
Information published.
CVE-2025-69277 libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group.
Published on: 2026-01-03 01:01:58
Link: View Details
Information published.
CVE-2025-15284 arrayLimit bypass in bracket notation allows DoS via memory exhaustion
Published on: 2026-01-03 01:02:10
Link: View Details
Information published.
CVE-2025-61594 URI Credential Leakage Bypass over CVE-2025-27221
Published on: 2026-01-03 01:02:18
Link: View Details
Information published.
CVE-2021-23445 Cross-site Scripting (XSS)
Published on: 2026-01-03 01:37:36
Link: View Details
Information published.
CVE-2025-9288 Missing type checks leading to hash rewind and passing on crafted data
Published on: 2026-01-03 01:37:40
Link: View Details
Information published.
CVE-2024-45310 runc can be confused to create empty files/directories on the host
Published on: 2026-01-03 01:35:10
Link: View Details
Information published.
CVE-2025-32387 Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow
Published on: 2026-01-03 01:36:46
Link: View Details
Information published.
CVE-2025-46327 Go Snowflake Driver has race condition when checking access to Easy Logging configuration file
Published on: 2026-01-03 01:36:54
Link: View Details
Information published.
CVE-2025-61103 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_lan_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Published on: 2026-01-03 01:37:55
Link: View Details
Information published.
CVE-2025-61107 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LSA Update packet.
Published on: 2026-01-03 01:38:07
Link: View Details
Information published.
CVE-2025-61102 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Published on: 2026-01-03 01:38:13
Link: View Details
Information published.
CVE-2025-61100 FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospf_opaque_lsa_dump function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) under specific malformed LSA conditions.
Published on: 2026-01-03 01:38:23
Link: View Details
Information published.
CVE-2025-61106 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Published on: 2026-01-03 01:38:02
Link: View Details
Information published.
CVE-2025-61101 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_rmt_itf_addr function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Published on: 2026-01-03 01:38:18
Link: View Details
Information published.
CVE-2025-61104 FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
Published on: 2026-01-03 01:38:28
Link: View Details
Information published.
CVE-2025-61099 FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaque_info_detail function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LS Update packet.
Published on: 2026-01-03 01:38:33
Link: View Details
Information published.
CVE-2024-6531 Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded.
Published on: 2026-01-03 01:35:52
Link: View Details
Information published.
CVE-2024-6485 XSS in Bootstrap button component
Published on: 2026-01-03 01:39:48
Link: View Details
Information published.
CVE-2025-7425 Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr
Published on: 2026-01-03 01:37:15
Link: View Details
Information published.
CVE-2025-7424 Libxslt: type confusion in xmlnode.psvi between stylesheet and source nodes
Published on: 2026-01-03 01:37:21
Link: View Details
Information published.
CVE-2025-10911 Libxslt: use-after-free with key data stored cross-rvt
Published on: 2026-01-03 01:37:47
Link: View Details
Information published.
CVE-2025-13281 Portworx Half-Blind SSRF in kube-controller-manager
Published on: 2026-01-02 14:40:26
Link: View Details
Information published.
CVE-2025-64436 KubeVirt Excessive Role Permissions Could Enable Unauthorized VMI Migrations Between Nodes
Published on: 2026-01-02 14:39:41
Link: View Details
Information published.
CVE-2025-64434 KubeVirt Improper TLS Certificate Management Handling Allows API Identity Spoofing
Published on: 2026-01-02 14:39:30
Link: View Details
Information published.
CVE-2025-64433 KubeVirt Arbitrary Container File Read
Published on: 2026-01-02 14:39:25
Link: View Details
Information published.
CVE-2025-64435 KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation
Published on: 2026-01-02 14:39:36
Link: View Details
Information published.
CVE-2025-64437 KubeVirt Isolation Detection Flaw Allows Arbitrary File Permission Changes
Published on: 2026-01-02 14:39:46
Link: View Details
Information published.
CVE-2025-61915 OpenPrinting CUPS vulnerable to stack based out-of-bound write
Published on: 2026-01-02 14:40:04
Link: View Details
Information published.
CVE-2025-64432 KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer
Published on: 2026-01-02 14:39:19
Link: View Details
Information published.
CVE-2024-56738 GNU GRUB (aka GRUB2) through 2.12 does not use a constant-time algorithm for grub_crypto_memcmp and thus allows side-channel attacks.
Published on: 2026-01-02 14:35:52
Link: View Details
Information published.
CVE-2025-7067 HDF5 H5FScache.c H5FS__sinfo_serialize_node_cb heap-based overflow
Published on: 2026-01-02 14:38:18
Link: View Details
Information published.
CVE-2025-7068 HDF5 H5FL.c H5FL__malloc memory leak
Published on: 2026-01-02 14:38:23
Link: View Details
Information published.
CVE-2025-6269 HDF5 H5Cimage.c H5C__reconstruct_cache_entry heap-based overflow
Published on: 2026-01-02 14:37:44
Link: View Details
Information published.
CVE-2025-6858 HDF5 H5Centry.c H5C__flush_single_entry null pointer dereference
Published on: 2026-01-02 14:37:49
Link: View Details
Information published.
CVE-2025-6816 HDF5 H5Ofsinfo.c H5O__fsinfo_encode heap-based overflow
Published on: 2026-01-02 14:38:00
Link: View Details
Information published.
CVE-2025-6750 HDF5 H5Omtime.c H5O__mtime_new_encode heap-based overflow
Published on: 2026-01-02 14:38:06
Link: View Details
Information published.
CVE-2025-6857 HDF5 H5Gnode.c H5G__node_cmp3 stack-based overflow
Published on: 2026-01-02 14:38:12
Link: View Details
Information published.
CVE-2025-6270 HDF5 H5FSsection.c H5FS__sect_find_node heap-based overflow
Published on: 2026-01-02 14:37:38
Link: View Details
Information published.
CVE-2025-6818 HDF5 H5Ochunk.c H5O__chunk_protect heap-based overflow
Published on: 2026-01-02 14:37:55
Link: View Details
Information published.
CVE-2025-44905 hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5Z__filter_scaleoffset function.
Published on: 2026-01-02 14:36:41
Link: View Details
Information published.
CVE-2024-30896 InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the authorization resource of the default organization to retrieve the operator token. InfluxDB OSS 1.x, Enterprise, Cloud, Cloud Dedicated and Clustered are not affected. NOTE: The researcher states that InfluxDB allows allAccess administrators to retrieve all raw tokens via an "influx auth ls" command. The supplier indicates that the organizations feature is operating as intended and that users may choose to add users to non-default organizations. A future release of InfluxDB 2.x will remove the ability to retrieve tokens from the API.
Published on: 2026-01-02 14:35:38
Link: View Details
Information published.
CVE-2024-3177 Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin
Published on: 2026-01-02 14:35:05
Link: View Details
Information published.
CVE-2025-59184 Storage Spaces Direct Information Disclosure Vulnerability
Published on: 2026-01-02 08:00:00
Link: View Details
Added acknowledgements. This is an informational change only.
CVE-2025-55683 Windows Kernel Information Disclosure Vulnerability
Published on: 2026-01-02 08:00:00
Link: View Details
Added acknowledgements. This is an informational change only.
CVE-2025-60710 Host Process for Windows Tasks Elevation of Privilege Vulnerability
Published on: 2026-01-02 08:00:00
Link: View Details
Added an acknowledgement. This is an informational change only.
