| | CVE-2026-45598 | Microsoft | high | 7.0 | — | | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45601 | Microsoft | high | 7.0 | — | | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45599 | Microsoft | high | 8.1 | — | | Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45597 | Microsoft | high | 7.0 | — | | Concurrent execution using shared resource with improper synchronization ('race condition') in UI Au… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45593 | Microsoft | high | 7.8 | — | | Use after free in Windows SDK allows an authorized attacker to elevate privileges locally. | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45592 | Microsoft | high | 7.8 | — | | Integer overflow or wraparound in Windows Internet (wininet.dll) allows an authorized attacker to el… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45591 | Microsoft | high | 7.5 | 2.4%
| | Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service ov… | Jun 9, 2026 | Jun 30, 2026 |
| | CVE-2026-45586 | Microsoft | high | 7.8 | — | | Improper link resolution before file access ('link following') in Windows Collaborative Translation … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-42829 | Microsoft | high | 7.8 | — | | Improper access control in Windows Administrator Protection allows an authorized attacker to bypass … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-42828 | Microsoft | high | 7.8 | — | | Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to ele… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48583 | Microsoft | high | 7.8 | — | | Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48578 | Microsoft | high | 7.9 | — | | Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48576 | Microsoft | high | 7.9 | — | | Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48575 | Microsoft | high | 7.9 | — | | Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48573 | Microsoft | high | 7.9 | — | | Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48570 | Microsoft | high | 7.9 | — | | Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48568 | Microsoft | high | 7.9 | — | | Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-48563 | Microsoft | high | 7.5 | — | | Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-47654 | Microsoft | high | 7.5 | — | | Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-47652 | Microsoft | high | 8.2 | — | | Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally. | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-47653 | Microsoft | high | 8.8 | — | | Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-47648 | Microsoft | high | 7.0 | — | | Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45588 | Microsoft | high | 7.9 | — | | Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-41092 | Microsoft | high | 7.8 | — | | Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges loca… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-47291 | Microsoft | critical | 9.8 | — | | Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code o… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-47288 | Microsoft | high | 7.1 | — | | Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code ove… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45657 | Microsoft | critical | 9.8 | — | | Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network. | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45656 | Microsoft | high | 7.8 | — | | Protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feat… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45648 | Microsoft | high | 8.8 | — | | Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to exe… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45641 | Microsoft | high | 8.4 | — | | Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally. | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45607 | Microsoft | high | 8.4 | — | | Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally. | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45640 | Microsoft | high | 7.0 | — | | Use after free in Windows Bluetooth Port Driver allows an authorized attacker to elevate privileges … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45605 | Microsoft | high | 7.8 | — | | Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges loca… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-45490 | Microsoft | high | 7.8 | 0.4%
| | Improper authorization in .NET allows an authorized attacker to elevate privileges locally. | Jun 9, 2026 | Jun 30, 2026 |
| | CVE-2026-45487 | Microsoft | high | 7.8 | — | | Time-of-check time-of-use (TOCTOU) race condition in Program Compatibility Assistant Service allows … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-34335 | Microsoft | high | 7.0 | — | | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-33828 | Microsoft | high | 7.8 | — | | Trust boundary violation in Windows Attestation allows an authorized attacker to elevate privileges … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-40404 | Microsoft | high | 7.8 | — | | Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-40409 | Microsoft | high | 7.8 | — | | Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-41108 | Microsoft | high | 7.0 | — | | Heap-based buffer overflow in Microsoft Windows DNS allows an authorized attacker to elevate privile… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-25089 | Fortinet | critical | 9.8 | 2.0%
| | A improper neutralization of special elements used in an os command ('os command injection') vulnera… | Jun 9, 2026 | Jun 11, 2026 |
| | CVE-2025-67862 | Fortinet | medium | 6.7 | 0.0%
| | An Internal Asset Exposed to Unsafe Debug Access Level or State vulnerability [CWE-1244] vulnerabili… | Jun 9, 2026 | Jun 11, 2026 |
| | CVE-2026-49938 | Fortinet | medium | 6.2 | 0.2%
| | A improper access control vulnerability in Fortinet FortiPortal 7.4.0 through 7.4.7, FortiPortal 7.2… | Jun 9, 2026 | Jul 8, 2026 |
| | CVE-2026-49818 | Apache | medium | 6.5 | 0.2%
| | The Apache Airflow Samba provider's `GCSToSambaOperator` joined GCS object names to the SMB destinat… | Jun 9, 2026 | Jun 12, 2026 |
| | CVE-2026-34905 | Apache | medium | 6.5 | 0.0%
| | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Answer.
This iss… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-34033 | Apache | medium | 5.4 | 0.0%
| | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apach… | Jun 9, 2026 | Jun 11, 2026 |
| | CVE-2026-34031 | Apache | medium | 6.5 | 0.0%
| | Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer.
This issue affects … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-33582 | Apache | medium | 6.5 | 0.0%
| | Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer.
This issue affects … | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-25699 | Apache | medium | 6.1 | 0.0%
| | Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer.
T… | Jun 9, 2026 | Jun 10, 2026 |
| | CVE-2026-25688 | Apache | medium | 6.1 | 0.0%
| | Improper Neutralization of Alternate XSS Syntax vulnerability in Apache Answer.
This issue affects … | Jun 9, 2026 | Jun 10, 2026 |