Common Vulnerabilities and Exposures (CVE)

CVE-2026-50354

Jul 17, 2026 21:30:03 UTC

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-50316

Jul 17, 2026 21:30:02 UTC

Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.

CVE-2026-50293

Jul 17, 2026 21:30:01 UTC

Use after free in Windows Internal Task Bar allows an authorized attacker to elevate privileges locally.

CVE-2026-49808

Jul 17, 2026 21:30:00 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-50298

Jul 17, 2026 21:29:59 UTC

Integer overflow or wraparound in Windows Spaceport.sys allows an unauthorized attacker to elevate privileges with a physical attack.

CVE-2026-50342

Jul 17, 2026 21:29:59 UTC

Improper access control in Windows MIDI Service Module allows an authorized attacker to elevate privileges locally.

CVE-2026-49807

Jul 17, 2026 21:29:58 UTC

Exposure of sensitive information to an unauthorized actor in Windows DirectX allows an unauthorized attacker to disclose information locally.

CVE-2026-50351

Jul 17, 2026 21:29:58 UTC

Improper access control in Windows Audio Compression Manager (ACM) allows an authorized attacker to elevate privileges locally.

CVE-2026-50318

Jul 17, 2026 21:29:57 UTC

Stack-based buffer overflow in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.

CVE-2026-50323

Jul 17, 2026 21:29:57 UTC

Use after free in Windows Runtime allows an authorized attacker to elevate privileges locally.

CVE-2026-49803

Jul 17, 2026 21:29:56 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows AppX Deployment Service allows an authorized attacker to elevate privileges locally.

CVE-2026-49805

Jul 17, 2026 21:29:56 UTC

Improper access control in Windows Win32K allows an authorized attacker to elevate privileges locally.

CVE-2026-49806

Jul 17, 2026 21:29:55 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.

CVE-2026-49802

Jul 17, 2026 21:29:54 UTC

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.

CVE-2026-49801

Jul 17, 2026 21:29:54 UTC

Use of uninitialized resource in Windows SMB allows an authorized attacker to disclose information locally.