Search CVEs

Top 20 matches Showing top matches — use filters or a more specific query to narrow

CVE-2026-20852

HIGH CVSS 7.7

Find Similar

Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.

microsoft

CVE-2026-20804

HIGH CVSS 7.7

Find Similar

Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.

microsoft

CVE-2026-27906

MEDIUM CVSS 4.4

Find Similar

Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.

microsoft

CVE-2025-26644

MEDIUM CVSS 5.1

Find Similar

Automated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally.

microsoft

CVE-2025-27731

HIGH CVSS 7.8

Find Similar

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-55692

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-62571

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-53139

HIGH CVSS 7.1

Find Similar

Cleartext transmission of sensitive information in Windows Hello allows an unauthorized attacker to bypass a security feature locally.

microsoft

CVE-2025-55701

HIGH CVSS 7.8

Find Similar

Improper validation of specified type of input in Microsoft Windows allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-58716

HIGH CVSS 8.8

Find Similar

Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-27928

HIGH CVSS 8.7

Find Similar

Improper input validation in Windows Hello allows an unauthorized attacker to bypass a security feature over a network.

microsoft

CVE-2025-59187

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-54103

HIGH CVSS 7.4

Find Similar

Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally.

microsoft

CVE-2025-62455

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows Message Queuing allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-26170

HIGH CVSS 7.8

Find Similar

Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-33067

HIGH CVSS 8.4

Find Similar

Improper privilege management in Windows Kernel allows an unauthorized attacker to elevate privileges locally.

microsoft

CVE-2026-27914

HIGH CVSS 7.8

Find Similar

Improper access control in Microsoft Management Console allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-24074

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-24060

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-24058

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

microsoft

Page 1+ Next →