Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In 2026
CVE-2026-32160
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-04-14
CVE-2026-32155
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-04-14
CVE-2026-32156
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally.
CVSS Score
7.4
EPSS Score
0.001
Published
2026-04-14
CVE-2026-32150
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.0
Published
2026-04-14
CVE-2026-32151
Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network.
CVSS Score
6.5
EPSS Score
0.001
Published
2026-04-14
CVE-2026-32153
Use after free in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-04-14
CVE-2026-32091
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
CVSS Score
8.4
EPSS Score
0.0
Published
2026-04-14
CVE-2026-32093
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.001
Published
2026-04-14
CVE-2026-32149
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.
CVSS Score
7.3
EPSS Score
0.001
Published
2026-04-14
CVE-2026-32088
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack.
CVSS Score
6.1
EPSS Score
0.001
Published
2026-04-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved