CVE 列表 – 发现高风险与在野利用漏洞

聚合 NVD、CVE 及多源情报,深度解析 RCE 等高危风险。系统集成 CVSS 与 EPSS 模型,动态追踪 Exploit 资源与 PoC 公开状态,研判可利用性。结合官方补丁与修复方案,优化漏洞管理优先级,缩短响应周期,保障资产安全。

分配机构(CNA / 来源):[email protected] 移除此筛选

显示 618013346 条结果
CVE 描述 最高 CVSS EPSS % 公开时间 更新时间
CVE-2026-50656 Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender publicly referred to as "RoguePlanet ". We are working to provide a high quality security update that addresses this vulnerability. We will provide information in this CVE when the update is available. 7.8 3.39% 2026-06-16 2026-06-17
CVE-2026-50512 Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally. 7.8 0.26% 2026-06-09 2026-06-17
CVE-2026-50511 Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally. 7.8 0.28% 2026-06-09 2026-06-17
CVE-2026-50508 Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an unauthorized attacker to perform spoofing over a network. 6.5 0.66% 2026-06-09 2026-06-17
CVE-2026-50507 Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack. 6.8 5.01% 2026-06-09 2026-06-17
CVE-2026-49161 Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security feature locally. 7.8 0.19% 2026-06-09 2026-06-17
CVE-2026-49160 Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network. 7.5 48.44% 2026-06-09 2026-06-17
CVE-2026-48583 Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. 7.8 0.27% 2026-06-09 2026-06-17
CVE-2026-48578 Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. 7.9 0.27% 2026-06-09 2026-06-17
CVE-2026-48576 Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. 7.9 1.03% 2026-06-09 2026-06-17
CVE-2026-48575 Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. 7.9 0.30% 2026-06-09 2026-06-17
CVE-2026-48574 Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally. 7.8 0.36% 2026-06-09 2026-06-17
CVE-2026-48573 Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. 7.9 1.03% 2026-06-09 2026-06-17
CVE-2026-48570 Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. 7.9 0.30% 2026-06-09 2026-06-17
CVE-2026-48569 Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally. 7.1 0.35% 2026-06-09 2026-06-17
CVE-2026-48568 Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. 7.9 0.30% 2026-06-09 2026-06-17
CVE-2026-48566 Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally. 5.5 0.36% 2026-06-09 2026-06-17
CVE-2026-48565 Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally. 7.8 0.43% 2026-06-09 2026-06-17
CVE-2026-48563 Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. 7.5 0.46% 2026-06-09 2026-06-17
CVE-2026-48562 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. 4.6 0.51% 2026-06-09 2026-06-17
cvelogic Threat Intelligence