Security Vulnerabilities
Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2026-05-12
Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network.
CVSS Score
9.8
EPSS Score
0.001
Published
2026-05-12
Improper control of generation of code ('code injection') in Microsoft Data Formulator allows an unauthorized attacker to execute code over a network.
CVSS Score
8.8
EPSS Score
0.001
Published
2026-05-12
Windows TCP/IP Denial of Service Vulnerability
CVSS Score
7.4
EPSS Score
0.001
Published
2026-05-12
Windows TCP/IP Denial of Service Vulnerability
CVSS Score
7.4
EPSS Score
0.001
Published
2026-05-12
Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVSS Score
8.1
EPSS Score
0.001
Published
2026-05-12
User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
CVSS Score
4.3
EPSS Score
0.0
Published
2026-05-12
Weak authentication in Dynamics Business Central allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-05-12
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-05-12
Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally.
CVSS Score
9.3
EPSS Score
0.001
Published
2026-05-12