Search CVEs

Top 20 matches Showing top matches — use filters or a more specific query to narrow

CVE-2026-27928

HIGH CVSS 8.7

Find Similar

Improper input validation in Windows Hello allows an unauthorized attacker to bypass a security feature over a network.

microsoft

CVE-2026-27906

MEDIUM CVSS 4.4

Find Similar

Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.

microsoft

CVE-2026-27913

HIGH CVSS 7.7

Find Similar

Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature locally.

microsoft

CVE-2025-29955

MEDIUM CVSS 5.5

Find Similar

Improper input validation in Windows Hyper-V allows an unauthorized attacker to deny service locally.

microsoft

CVE-2026-26154

HIGH CVSS 7.5

Find Similar

Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network.

microsoft

CVE-2026-20856

HIGH CVSS 8.1

Find Similar

Improper input validation in Windows Server Update Service allows an unauthorized attacker to execute code over a network.

microsoft

CVE-2025-27737

HIGH CVSS 8.6

Find Similar

Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.

microsoft

CVE-2025-59190

MEDIUM CVSS 5.5

Find Similar

Improper input validation in Microsoft Windows Search Component allows an unauthorized attacker to deny service locally.

microsoft

CVE-2025-26635

MEDIUM CVSS 6.5

Find Similar

Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.

microsoft

CVE-2025-26647

HIGH CVSS 8.8

Find Similar

Improper input validation in Windows Kerberos allows an authorized attacker to elevate privileges over a network.

microsoft

CVE-2025-26644

MEDIUM CVSS 5.1

Find Similar

Automated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally.

microsoft

CVE-2026-26143

HIGH CVSS 7.8

Find Similar

Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.

microsoft

CVE-2025-55692

HIGH CVSS 7.8

Find Similar

Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2025-53139

HIGH CVSS 7.1

Find Similar

Cleartext transmission of sensitive information in Windows Hello allows an unauthorized attacker to bypass a security feature locally.

microsoft

CVE-2025-27731

HIGH CVSS 7.8

Find Similar

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-21247

HIGH CVSS 7.3

Find Similar

Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.

microsoft

CVE-2026-26170

HIGH CVSS 7.8

Find Similar

Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-23666

HIGH CVSS 7.5

Find Similar

Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network.

microsoft

CVE-2026-20852

HIGH CVSS 7.7

Find Similar

Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.

microsoft

CVE-2026-20804

HIGH CVSS 7.7

Find Similar

Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally.

microsoft

Page 1+ Next →