VYPR

Windows 10 1607

by Microsoft

CVEs (3,413)

  • CVE-2026-27924HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27923HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27920HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27919HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27918HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27916HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27915HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27914HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.03

    Improper access control in Microsoft Management Console allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27911HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27910HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Improper handling of insufficient permissions or privileges in Windows Installer allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27909HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.02

    Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26184HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26180HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26176HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26172HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26170HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26168HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26163HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Double free in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26162HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Access of resource using incompatible type ('type confusion') in Windows OLE allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26161HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Untrusted pointer dereference in Windows Sensor Data Service allows an authorized attacker to elevate privileges locally.

Page 7 of 171