Common Vulnerabilities and Exposures (CVE)

CVE-2026-45497

Jul 8, 2026 23:24:37 UTC

Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute code over a network.

CVE-2026-44804

Jul 8, 2026 23:24:37 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-44813

Jul 8, 2026 23:24:36 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-42993

Jul 8, 2026 23:24:36 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44812

Jul 8, 2026 23:24:35 UTC

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

CVE-2026-44803

Jul 8, 2026 23:24:34 UTC

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

CVE-2026-42987

Jul 8, 2026 23:24:34 UTC

Use after free in Windows Deployment Services allows an unauthorized attacker to execute code over a network.

CVE-2026-42985

Jul 8, 2026 23:24:33 UTC

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44801

Jul 8, 2026 23:24:33 UTC

Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44814

Jul 8, 2026 23:24:32 UTC

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.

CVE-2026-44802

Jul 8, 2026 23:24:32 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-42983

Jul 8, 2026 23:24:31 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-44815

Jul 8, 2026 23:24:31 UTC

Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44799

Jul 8, 2026 23:24:30 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44807

Jul 8, 2026 23:24:30 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.