快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 13787
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-23671 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windo
|
HIGH | 7.0 | 2026-03-10 |
microsoft windows_10_1607
microsoft windows_10_1809
+11个
|
NVD | |
| CVE-2026-23669 |
Use after free in Windows Print Spooler Components allows an authorized attacker to execute code ove
|
HIGH | 8.8 | 2026-03-10 |
microsoft windows_10_1607
microsoft windows_10_1809
+13个
|
NVD | |
| CVE-2026-23668 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Micro
|
HIGH | 7.0 | 2026-03-10 |
microsoft windows_10_1607
microsoft windows_10_1809
+9个
|
NVD | |
| CVE-2026-23667 |
Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally.
|
HIGH | 7.0 | 2026-03-10 |
microsoft windows_10_1809
microsoft windows_10_21h2
+5个
|
NVD | |
| CVE-2026-23664 |
Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an
|
HIGH | 7.5 | 2026-03-10 |
microsoft azure_iot_explorer
|
NVD | |
| CVE-2026-23662 |
Missing authentication for critical function in Azure IoT Explorer allows an unauthorized attacker t
|
HIGH | 7.5 | 2026-03-10 |
microsoft azure_iot_explorer
|
NVD | |
| CVE-2026-23661 |
Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacke
|
HIGH | 7.5 | 2026-03-10 |
microsoft azure_iot_explorer
|
NVD | |
| CVE-2026-23660 |
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevat
|
HIGH | 7.8 | 2026-03-10 |
microsoft windows_admin_center
|
NVD | |
| CVE-2026-23656 |
Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attac
|
MEDIUM | 5.9 | 2026-03-10 |
microsoft windows_app
|
NVD | |
| CVE-2026-23654 |
Dependency on vulnerable third-party component in GitHub Repo: zero-shot-scfoundation allows an unau
|
HIGH | 8.8 | 2026-03-10 |
microsoft zero-shot-scfoundation
|
NVD | |
| CVE-2026-21262 |
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a net
|
HIGH | 8.8 | 2026-03-10 |
microsoft sql_server_2016
microsoft sql_server_2017
+3个
|
NVD | |
| CVE-2026-20967 |
Improper input validation in System Center Operations Manager allows an authorized attacker to eleva
|
HIGH | 8.8 | 2026-03-10 |
microsoft system_center_operations_manager
microsoft system_center_operations_manager
+1个
|
NVD | |
| CVE-2026-26125 |
Payment Orchestrator Service Elevation of Privilege Vulnerability
|
HIGH | 8.6 | 2026-03-05 |
microsoft payment_orchestrator_service
|
NVD | |
| CVE-2026-26124 |
Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
|
MEDIUM | 6.7 | 2026-03-05 |
microsoft aci_confidential_containers
|
NVD | |
| CVE-2026-26122 |
Microsoft ACI Confidential Containers Information Disclosure Vulnerability
|
MEDIUM | 6.5 | 2026-03-05 |
microsoft aci_confidential_containers
|
NVD | |
| CVE-2026-23651 |
Permissive regular expression in Azure Compute Gallery allows an authorized attacker to elevate priv
|
MEDIUM | 6.7 | 2026-03-05 |
microsoft aci_confidential_containers
|
NVD | |
| CVE-2026-21536 |
Microsoft Devices Pricing Program Remote Code Execution Vulnerability
|
CRITICAL | 9.8 | 2026-03-05 |
microsoft devices_pricing_program
|
NVD | |
| CVE-2026-21535 |
Microsoft Teams Information Disclosure Vulnerability
|
HIGH | 8.2 | 2026-02-19 |
Microsoft Microsoft Teams
microsoft teams
|
CVE NVD | |
| CVE-2026-26030 |
Microsoft Semantic Kernel InMemoryVectorStore filter functionality vulnerable to remote code execution
|
CRITICAL | 10.0 | 2026-02-19 |
microsoft semantic-kernel
microsoft semantic_kernel
|
CVE NVD | |
| CVE-2026-26119 |
Windows Admin Center Elevation of Privilege Vulnerability
|
HIGH | 8.8 | 2026-02-17 |
Microsoft Windows Admin Center
microsoft windows_admin_center
|
CVE NVD |