Common Vulnerabilities and Exposures (CVE)

CVE-2026-53366

Jul 16, 2026 05:13:40 UTC

In the Linux kernel, the following vulnerability has been resolved: ipv4: account for fraggap on the paged allocation path In __ip_append_data(), when the paged-allocation branch is taken, alloclen and pagedlen are computed as alloclen ...

CVE-2026-42789

Jul 16, 2026 04:16:31 UTC

Improper Following of a Certificate's Chain of Trust vulnerability in Erlang OTP public_key (pubkey_cert module) allows a non-CA certificate to be accepted as an intermediate issuer, enabling certificate chain forgery. In lib/public_key/sr...

CVE-2026-42790

Jul 16, 2026 04:16:29 UTC

Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) allows a DNS nameConstraints bypass via subject CommonName fallback in TLS hostname verification. Two flaws combine to allow a subo...

CVE-2026-50331

Jul 16, 2026 03:56:02 UTC

Use after free in Windows Application Model allows an authorized attacker to elevate privileges locally.

CVE-2026-49803

Jul 16, 2026 03:56:01 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows AppX Deployment Service allows an authorized attacker to elevate privileges locally.

CVE-2026-50364

Jul 16, 2026 03:56:00 UTC

Improper link resolution before file access ('link following') in Windows Server Backup allows an authorized attacker to elevate privileges locally.

CVE-2026-49181

Jul 16, 2026 03:55:59 UTC

Integer underflow (wrap or wraparound) in Windows DHCP Client allows an unauthorized attacker to elevate privileges over a network.

CVE-2026-50502

Jul 16, 2026 03:55:58 UTC

Insufficient granularity of access control in Windows Event Logging Service allows an authorized attacker to execute code over a network.

CVE-2026-57091

Jul 16, 2026 03:55:57 UTC

Stack-based buffer overflow in Windows File History Service allows an authorized attacker to elevate privileges locally.

CVE-2026-50680

Jul 16, 2026 03:55:57 UTC

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

CVE-2026-50405

Jul 16, 2026 03:55:56 UTC

Insufficient granularity of access control in Windows Filtering Platform (WFP) allows an authorized attacker to elevate privileges locally.

CVE-2026-54127

Jul 16, 2026 03:55:55 UTC

Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.

CVE-2026-20296

Jul 16, 2026 03:55:54 UTC

In Splunk Enterprise versions below 10.4.1, 10.2.5, 10.0.8, and 9.4.13, and Splunk Cloud Platform versions below 10.5.2605.0, 10.4.2604.7, 10.3.2512.16, 10.2.2510.18, and 10.1.2507.24, an attacker could trick a user that holds a role with t...

CVE-2026-20297

Jul 16, 2026 03:55:53 UTC

In Splunk Enterprise versions below 10.4.1, 10.2.5, 10.0.8, 9.4.13, and 9.3.14, and Splunk Cloud Platform versions below 10.5.2605.0, 10.4.2604.6, 10.2.2510.18, and 10.1.2507.24, a user who holds a role that contains the `edit_local_apps` a...

CVE-2026-54124

Jul 16, 2026 03:55:53 UTC

Integer overflow or wraparound in Windows Terminal allows an unauthorized attacker to execute code locally.