Threat-Lens CVE Hub

CVE-2026-45490

HIGH CVSS 7.8

Find Similar

Improper authorization in .NET allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-42902

HIGH CVSS 7.8

Find Similar

Improper authorization in Microsoft PowerToys allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-35433

HIGH CVSS 7.3

Find Similar

Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally.

microsoft

CVE-2026-44810

HIGH CVSS 7.8

Find Similar

Improper authentication in Windows Cryptographic Services allows an unauthorized attacker to elevate privileges locally.

microsoft

CVE-2025-47962

HIGH CVSS 7.8

Find Similar

Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-42834

HIGH CVSS 7.8

Find Similar

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

microsoft

CVE-2026-41086

HIGH CVSS 8.8

Find Similar

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

microsoft

CVE-2026-32177

HIGH CVSS 7.3

Find Similar

Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally.

microsoft

CVE-2026-48583

HIGH CVSS 7.8

Find Similar

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-45653

HIGH CVSS 7.0

Find Similar

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-42984

HIGH CVSS 7.0

Find Similar

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-24289

HIGH CVSS 7.8

Find Similar

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-42822

CRITICAL CVSS 10.0

Find Similar

Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network.

microsoft

CVE-2025-64669

HIGH CVSS 7.8

Find Similar

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-45593

HIGH CVSS 7.8

Find Similar

Use after free in Windows SDK allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-47292

HIGH CVSS 7.8

Find Similar

Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorized attacker to elevate privileges locally.

microsoft

CVE-2025-27744

HIGH CVSS 7.8

Find Similar

Improper access control in Microsoft Office allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-42829

HIGH CVSS 7.8

Find Similar

Improper access control in Windows Administrator Protection allows an authorized attacker to bypass a security feature locally.

microsoft

CVE-2026-40381

HIGH CVSS 7.8

Find Similar

Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.

microsoft

CVE-2026-26131

HIGH CVSS 7.8

Find Similar

Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally.

microsoft linux