Security Vulnerabilities
Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.5
EPSS Score
0.009
Published
2026-06-09
Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
CVSS Score
7.5
EPSS Score
0.004
Published
2026-06-09
Out-of-bounds write in Windows Hotpatch Monitoring Service allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.003
Published
2026-06-09
Improper access control in Windows Administrator Protection allows an authorized attacker to bypass a security feature locally.
CVSS Score
7.8
EPSS Score
0.003
Published
2026-06-09
Improper neutralization of special elements in output used by a downstream component ('injection') in Microsoft Teams for Android allows an authorized attacker to disclose information over a network.
CVSS Score
8.1
EPSS Score
0.013
Published
2026-06-09
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.002
Published
2026-06-09
Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.003
Published
2026-06-09
Improper authorization in Microsoft PowerToys allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.003
Published
2026-06-09
Null pointer dereference in Windows Kerberos allows an authorized attacker to deny service over a network.
CVSS Score
6.5
EPSS Score
0.009
Published
2026-06-09
Heap-based buffer overflow in Windows TCP/IP allows an unauthorized attacker to elevate privileges over an adjacent network.
CVSS Score
9.6
EPSS Score
0.004
Published
2026-06-09