HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2026-9262

Jun 15, 2026 23:40:15 UTC

Use of a non-secure protocol as the default FTP configuration in Canon EOS Network Setting Tool Version 1.5.0 or earlier

CVE-2026-9261

Jun 15, 2026 23:39:23 UTC

Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier

CVE-2026-9260

Jun 15, 2026 23:38:29 UTC

Use of hard-coded cryptographic keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier

CVE-2026-9259

Jun 15, 2026 23:36:28 UTC

Improper validation of server certificates in Canon EOS Network Setting Tool Version 1.5.0 or earlier

CVE-2026-9258

Jun 15, 2026 23:35:41 UTC

Improper validation of SSH host keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier

CVE-2026-12087

Jun 15, 2026 23:33:50 UTC

Socket versions before 2.041 for Perl have an out-of-bounds heap read. In Socket.xs, pack_ip_mreq_source() checks the length of its source argument before the argument is read, so the check tests the byte length carried over from the prece...

CVE-2026-48579

Jun 15, 2026 23:20:47 UTC

Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to disclose information over a network.

CVE-2026-48567

Jun 15, 2026 23:20:47 UTC

Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.

CVE-2026-42824

Jun 15, 2026 23:20:46 UTC

Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network.

CVE-2026-45497

Jun 15, 2026 23:20:46 UTC

Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute code over a network.

CVE-2026-44804

Jun 15, 2026 23:20:45 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-44813

Jun 15, 2026 23:20:45 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-42993

Jun 15, 2026 23:20:44 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44812

Jun 15, 2026 23:20:44 UTC

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

CVE-2026-44803

Jun 15, 2026 23:20:43 UTC

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

Page: 1