VYPR

Windows 11 24h2

by Microsoft

CVEs (1,332)

  • CVE-2026-32183HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.01

    Improper neutralization of special elements used in a command ('command injection') in Windows Snipping Tool allows an unauthorized attacker to execute code locally.

  • CVE-2026-32165HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32164HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32163HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32160HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32159HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32158HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32155HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32153HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32090HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32089HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32078HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Projected File System allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32077HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32076HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32074HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Double free in Windows Projected File System allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32069HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Double free in Windows Projected File System allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27927HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Projected File System allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27923HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27920HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

  • CVE-2026-27919HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

Page 6 of 67