Security Vulnerabilities
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
CVSS Score
5.4
EPSS Score
0.005
Published
2026-06-09
Exposure of sensitive information to an unauthorized actor in Visual Studio Code allows an unauthorized attacker to disclose information over a network.
CVSS Score
6.5
EPSS Score
0.008
Published
2026-06-09
Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network.
CVSS Score
6.5
EPSS Score
0.006
Published
2026-06-09
Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code over an adjacent network.
CVSS Score
7.1
EPSS Score
0.005
Published
2026-06-09
Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
CVSS Score
8.8
EPSS Score
0.01
Published
2026-06-09
Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network.
CVSS Score
9.8
EPSS Score
0.215
Published
2026-06-09
Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.004
Published
2026-06-09
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.002
Published
2026-06-09
Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.
CVSS Score
9.8
EPSS Score
0.155
Published
2026-06-09
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVSS Score
7.8
EPSS Score
0.003
Published
2026-06-09