Total CVEs

142,588

Critical Severity

4,002

High Severity

14,355

Last 7 Days

1,858
Quick preset (or use dates below)
Clear Filters
Showing 13,561 - 13,580 of 14,355 CVEs
CVE-2026-21272 HIGH - 8.6

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system write. An attacker could leverage this vulnerability to manipulate or inject malicious data into files on the system. Exploitation of this issue requires ...

Vendor: adobe
Product: dreamweaver
Published: Jan 13, 2026
Source: NVD
CVE-2026-21271 HIGH - 8.6

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file and scope is cha...

Vendor: adobe
Product: dreamweaver
Published: Jan 13, 2026
Source: NVD
CVE-2026-21268 HIGH - 8.6

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file and scope is cha...

Vendor: adobe
Product: dreamweaver
Published: Jan 13, 2026
Source: NVD
CVE-2026-21267 HIGH - 8.6

Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. Exploitation of this issue requires user interaction in that...

Vendor: adobe
Product: dreamweaver
Published: Jan 13, 2026
Source: NVD
CVE-2026-21226 HIGH - 7.5

Deserialization of untrusted data in Azure Core shared client library for Python allows an authorized attacker to execute code over a network.

Vendor: microsoft
Product: azure_sdk_for_python
Published: Jan 13, 2026
Source: NVD
CVE-2026-21224 HIGH - 7.8

Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: azure_connected_machine_agent
Published: Jan 13, 2026
Source: NVD
CVE-2026-21221 HIGH - 7.0

Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_24h2
Published: Jan 13, 2026
Source: NVD
CVE-2026-21219 HIGH - 7.0

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: windows_software_development_kit
Published: Jan 13, 2026
Source: NVD
CVE-2026-20965 HIGH - 7.5

Improper verification of cryptographic signature in Windows Admin Center allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_admin_center
Published: Jan 13, 2026
Source: NVD
CVE-2026-20963 HIGH - 8.8

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Vendor: microsoft
Product: sharepoint_server
Published: Jan 13, 2026
Source: NVD
CVE-2026-20957 HIGH - 7.8

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20956 HIGH - 7.8

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20955 HIGH - 7.8

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20953 HIGH - 8.4

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20952 HIGH - 8.4

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20951 HIGH - 7.8

Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: sharepoint_server
Published: Jan 13, 2026
Source: NVD
CVE-2026-20950 HIGH - 7.8

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20949 HIGH - 7.8

Improper access control in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20948 HIGH - 7.8

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jan 13, 2026
Source: NVD
CVE-2026-20947 HIGH - 8.8

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Vendor: microsoft
Product: sharepoint_server
Published: Jan 13, 2026
Source: NVD