HackTesting

Common Vulnerabilities and Exposures (CVE)

CVE-2026-42912

Jun 17, 2026 16:27:52 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

CVE-2026-42913

Jun 17, 2026 16:27:51 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-42911

Jun 17, 2026 16:27:50 UTC

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2026-42916

Jun 17, 2026 16:27:50 UTC

Integer underflow (wrap or wraparound) in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-42909

Jun 17, 2026 16:27:49 UTC

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

CVE-2026-42980

Jun 17, 2026 16:27:49 UTC

Integer underflow (wrap or wraparound) in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-42908

Jun 17, 2026 16:27:48 UTC

Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network.

CVE-2026-42907

Jun 17, 2026 16:27:48 UTC

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information locally.

CVE-2026-42906

Jun 17, 2026 16:27:47 UTC

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information locally.

CVE-2026-42905

Jun 17, 2026 16:27:46 UTC

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

CVE-2026-42904

Jun 17, 2026 16:27:44 UTC

Heap-based buffer overflow in Windows TCP/IP allows an unauthorized attacker to elevate privileges over an adjacent network.

CVE-2026-42903

Jun 17, 2026 16:27:43 UTC

Null pointer dereference in Windows Kerberos allows an authorized attacker to deny service over a network.

CVE-2026-42837

Jun 17, 2026 16:27:43 UTC

Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally.

CVE-2026-42836

Jun 17, 2026 16:27:42 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.

CVE-2026-50512

Jun 17, 2026 16:27:42 UTC

Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.

Page: 37