HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2026-50511

Jun 9, 2026 17:50:09 UTC

Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.

CVE-2026-50512

Jun 9, 2026 17:50:08 UTC

Missing authentication for critical function in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.

CVE-2026-48567

Jun 9, 2026 17:50:08 UTC

Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.

CVE-2026-42824

Jun 9, 2026 17:50:07 UTC

Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network.

CVE-2026-45497

Jun 9, 2026 17:50:07 UTC

Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute code over a network.

CVE-2026-44804

Jun 9, 2026 17:50:06 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-44813

Jun 9, 2026 17:50:03 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-42993

Jun 9, 2026 17:50:01 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44812

Jun 9, 2026 17:50:00 UTC

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

CVE-2026-44803

Jun 9, 2026 17:50:00 UTC

Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

CVE-2026-42987

Jun 9, 2026 17:49:59 UTC

Use after free in Windows Deployment Services allows an unauthorized attacker to execute code over a network.

CVE-2026-42985

Jun 9, 2026 17:49:58 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44801

Jun 9, 2026 17:49:58 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-44814

Jun 9, 2026 17:49:57 UTC

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.

CVE-2026-44802

Jun 9, 2026 17:49:57 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Page: 2