8.8

CVSS3.1

CVE-2026-20868 - Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7.8

CVSS3.1

CVE-2026-20867 - Windows Management Services Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7.8

CVSS3.1

CVE-2026-20866 - Windows Management Services Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7

CVSS3.1

CVE-2026-20863 - Win32k Elevation of Privilege Vulnerability

Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

5.5

CVSS3.1

CVE-2026-20862 - Windows Management Services Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows Management Services allows an authorized attacker to disclose information locally.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7.8

CVSS3.1

CVE-2026-20861 - Windows Management Services Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7

CVSS3.1

CVE-2026-21219 - Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7.5

CVSS3.1

CVE-2026-20854 - Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability

Use after free in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to execute code over a network.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7.4

CVSS3.1

CVE-2026-20853 - Windows WalletService Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows WalletService allows an unauthorized attacker to elevate privileges locally.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.

7.5

CVSS3.1

CVE-2026-20849 - Windows Kerberos Elevation of Privilege Vulnerability

Reliance on untrusted inputs in a security decision in Windows Kerberos allows an authorized attacker to elevate privileges over a network.

๐Ÿ“… Published: Jan. 13, 2026, 5:56 p.m. ๐Ÿ”„ Last Modified: Jan. 20, 2026, 11:04 p.m.
Total resulsts: 328313
Page 92 of 32,832
ยซ previous page ยป next page
Filters