VYPR

Windows 11 26h1

by Microsoft

CVEs (334)

  • CVE-2026-42970MedJun 9, 2026
    risk 0.36cvss 5.5epss 0.00

    Use of uninitialized resource in Windows Push Notifications allows an authorized attacker to disclose information locally.

  • CVE-2026-42969MedJun 9, 2026
    risk 0.36cvss 5.5epss 0.00

    Use of uninitialized resource in Windows Push Notifications allows an authorized attacker to disclose information locally.

  • CVE-2026-42968MedJun 9, 2026
    risk 0.36cvss 5.5epss 0.00

    Out-of-bounds read in Windows Telephony Service allows an authorized attacker to disclose information locally.

  • CVE-2026-42906MedJun 9, 2026
    risk 0.36cvss 5.5epss 0.00

    Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information locally.

  • CVE-2026-35419MedMay 12, 2026
    risk 0.36cvss 5.5epss 0.00

    Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.

  • CVE-2026-34339MedMay 12, 2026
    risk 0.36cvss 5.5epss 0.00

    Null pointer dereference in Windows LDAP - Lightweight Directory Access Protocol allows an authorized attacker to deny service locally.

  • CVE-2026-32218MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.

  • CVE-2026-32217MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.

  • CVE-2026-32216MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Null pointer dereference in Windows Redirected Drive Buffering allows an authorized attacker to deny service locally.

  • CVE-2026-32215MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.

  • CVE-2026-32214MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Improper access control in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.

  • CVE-2026-32212MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Improper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.

  • CVE-2026-32181MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Improper privilege management in Microsoft Windows allows an authorized attacker to deny service locally.

  • CVE-2026-32085MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an authorized attacker to disclose information locally.

  • CVE-2026-32084MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

  • CVE-2026-32081MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

  • CVE-2026-32079MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.

  • CVE-2026-27931MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.

  • CVE-2026-27930MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.

  • CVE-2026-20806MedApr 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Access of resource using incompatible type ('type confusion') in Windows COM allows an authorized attacker to disclose information locally.

Page 13 of 17