Total CVEs

143,793

Critical Severity

4,093

High Severity

14,778

Last 7 Days

1,518
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 20,901 - 20,920 of 40,198 CVEs
CVE-2026-32201 MEDIUM - 6.5

Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.

Vendor: microsoft
Product: sharepoint_server
Published: Apr 14, 2026
Source: NVD
CVE-2026-32200 HIGH - 7.8

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32199 HIGH - 7.8

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32198 HIGH - 7.8

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32197 HIGH - 7.8

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32196 MEDIUM - 6.1

Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an unauthorized attacker to perform spoofing over a network.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32195 HIGH - 7.0

Stack-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_26h1
Published: Apr 14, 2026
Source: NVD
CVE-2026-32192 HIGH - 7.8

Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32190 HIGH - 8.4

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32189 HIGH - 7.8

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32188 HIGH - 7.1

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32184 HIGH - 7.8

Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elevate privileges locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32183 HIGH - 7.8

Improper neutralization of special elements used in a command ('command injection') in Windows Snipping Tool allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: windows_10_1607
Published: Apr 14, 2026
Source: NVD
CVE-2026-32181 MEDIUM - 5.5

Improper privilege management in Microsoft Windows allows an authorized attacker to deny service locally.

Vendor: microsoft
Product: windows_10_21h2
Published: Apr 14, 2026
Source: NVD
CVE-2026-32178 HIGH - 7.5

Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network.

Vendor: nuget
Product: Microsoft.NetCore.App.Runtime.linux-arm
Published: Apr 14, 2026
Source: NVD
CVE-2026-32176 MEDIUM - 6.7

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32171 HIGH - 8.8

Insufficiently protected credentials in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32168 HIGH - 7.8

Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32167 MEDIUM - 6.7

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.

Published: Apr 14, 2026
Source: NVD
CVE-2026-32165 HIGH - 7.8

Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_10_1809
Published: Apr 14, 2026
Source: NVD