Total CVEs

138,585

Critical Severity

3,576

High Severity

12,840

Last 7 Days

1,991
Quick preset (or use dates below)
Clear Filters
Showing 1,341 - 1,360 of 12,840 CVEs
CVE-2026-44820 HIGH - 7.8

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jun 09, 2026
Source: NVD
CVE-2026-44819 HIGH - 7.8

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jun 09, 2026
Source: NVD
CVE-2026-44818 HIGH - 7.0

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jun 09, 2026
Source: NVD
CVE-2026-44817 HIGH - 7.8

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vendor: microsoft
Product: 365_apps
Published: Jun 09, 2026
Source: NVD
CVE-2026-44813 HIGH - 7.8

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_26h1
Published: Jun 09, 2026
Source: NVD
CVE-2026-44812 HIGH - 7.8

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

Published: Jun 09, 2026
Source: NVD
CVE-2026-44811 HIGH - 7.8

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_26h1
Published: Jun 09, 2026
Source: NVD
CVE-2026-44810 HIGH - 8.4

Improper authentication in Windows Cryptographic Services allows an unauthorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_23h2
Published: Jun 09, 2026
Source: NVD
CVE-2026-44809 HIGH - 7.8

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_24h2
Published: Jun 09, 2026
Source: NVD
CVE-2026-44808 HIGH - 7.8

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_26h1
Published: Jun 09, 2026
Source: NVD
CVE-2026-44807 HIGH - 7.8

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_26h1
Published: Jun 09, 2026
Source: NVD
CVE-2026-44804 HIGH - 7.8

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_11_26h1
Published: Jun 09, 2026
Source: NVD
CVE-2026-44803 HIGH - 7.8

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

Published: Jun 09, 2026
Source: NVD
CVE-2026-44802 HIGH - 7.8

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_10_1809
Published: Jun 09, 2026
Source: NVD
CVE-2026-44801 HIGH - 7.5

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: remote_desktop_client
Published: Jun 09, 2026
Source: NVD
CVE-2026-44799 HIGH - 7.5

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: remote_desktop_client
Published: Jun 09, 2026
Source: NVD
CVE-2026-42993 HIGH - 7.5

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: windows_10_21h2
Published: Jun 09, 2026
Source: NVD
CVE-2026-42992 HIGH - 7.5

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: windows_app
Published: Jun 09, 2026
Source: NVD
CVE-2026-42991 HIGH - 7.8

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_10_1809
Published: Jun 09, 2026
Source: NVD
CVE-2026-42989 HIGH - 7.8

Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_10_1607
Published: Jun 09, 2026
Source: NVD