Common Vulnerabilities and Exposures (CVE)

CVE-2026-45602

Jun 26, 2026 19:41:42 UTC

No cwe for this issue in Windows DHCP Server allows an unauthorized attacker to perform tampering over a network.

CVE-2026-45600

Jun 26, 2026 19:41:41 UTC

Access of resource using incompatible type ('type confusion') in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

CVE-2026-45596

Jun 26, 2026 19:41:41 UTC

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2026-45636

Jun 26, 2026 19:41:40 UTC

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

CVE-2026-45598

Jun 26, 2026 19:41:40 UTC

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2026-45601

Jun 26, 2026 19:41:39 UTC

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2026-45599

Jun 26, 2026 19:41:39 UTC

Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code over a network.

CVE-2026-45597

Jun 26, 2026 19:41:38 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in UI Automation Manager (uiamanager.dll) allows an authorized attacker to elevate privileges locally.

CVE-2026-45595

Jun 26, 2026 19:41:37 UTC

Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature over a network.

CVE-2026-45604

Jun 26, 2026 19:41:37 UTC

Out-of-bounds read in Windows Application Identity (AppID) Subsystem allows an authorized attacker to disclose information locally.

CVE-2026-45594

Jun 26, 2026 19:41:36 UTC

Exposure of sensitive information to an unauthorized actor in Windows Application Identity (AppID) Subsystem allows an authorized attacker to disclose information locally.

CVE-2026-45593

Jun 26, 2026 19:41:36 UTC

Use after free in Windows SDK allows an authorized attacker to elevate privileges locally.

CVE-2026-45592

Jun 26, 2026 19:41:35 UTC

Integer overflow or wraparound in Windows Internet (wininet.dll) allows an authorized attacker to elevate privileges locally.

CVE-2026-45591

Jun 26, 2026 19:41:35 UTC

Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a network.

CVE-2026-45586

Jun 26, 2026 19:41:34 UTC

Improper link resolution before file access ('link following') in Windows Collaborative Translation Framework allows an authorized attacker to elevate privileges locally.