Vulnerabilities
Vulnerable Software
CVE-2026-56155
Known exploited
Insufficient granularity of access control in Active Directory Federation Services (AD FS) allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.004
Published
2026-07-14
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K allows an authorized attacker to elevate privileges locally.
CVSS Score
8.8
EPSS Score
0.002
Published
2026-07-14
Integer overflow or wraparound in Windows Resilient File System (ReFS) allows an authorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.002
Published
2026-07-14
Exposure of sensitive information to an unauthorized actor in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.003
Published
2026-07-14
Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
CVSS Score
6.5
EPSS Score
0.007
Published
2026-06-09
Missing authentication for critical function in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
CVSS Score
6.8
EPSS Score
0.05
Published
2026-06-09
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.004
Published
2026-06-09
Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
CVSS Score
7.9
EPSS Score
0.003
Published
2026-06-09
No cwe for this issue in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
CVSS Score
7.9
EPSS Score
0.01
Published
2026-06-09
Improper access control in Windows Secure Boot allows an authorized attacker to elevate privileges locally.
CVSS Score
7.9
EPSS Score
0.003
Published
2026-06-09


Contact Us

Shodan ® - All rights reserved