| | CVE-2026-32155 |  Microsoft | high | 7.8 | 0.0%
| | Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32153 | Microsoft | high | 7.8 | 0.0%
| | Use after free in Microsoft Windows Speech allows an authorized attacker to elevate privileges local… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32151 | Microsoft | medium | 6.5 | 0.1%
| | Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized att… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32150 | Microsoft | high | 7.0 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Funct… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32149 | Microsoft | high | 7.3 | 0.1%
| | Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally. | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32091 | Microsoft | high | 8.4 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Micro… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32088 | Microsoft | medium | 6.1 | 0.1%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Windo… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32086 | Microsoft | high | 7.0 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Funct… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32084 | Microsoft | medium | 5.5 | 0.0%
| | Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an author… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32080 | Microsoft | high | 7.0 | 0.0%
| | Use after free in Windows WalletService allows an authorized attacker to elevate privileges locally. | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32079 | Microsoft | medium | 5.5 | 0.0%
| | Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an author… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32078 | Microsoft | high | 7.8 | 0.0%
| | Use after free in Windows Projected File System allows an authorized attacker to elevate privileges … | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32077 | Microsoft | high | 7.8 | 0.0%
| | Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an author… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32076 | Microsoft | high | 7.8 | 0.0%
| | Out-of-bounds read in Windows Storage Spaces Controller allows an authorized attacker to elevate pri… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32074 | Microsoft | high | 7.8 | 0.0%
| | Double free in Windows Projected File System allows an authorized attacker to elevate privileges loc… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32072 | Microsoft | medium | 6.2 | 0.1%
| | Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoof… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32070 | Microsoft | high | 7.0 | 0.0%
| | Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate pri… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32069 | Microsoft | high | 7.8 | 0.0%
| | Double free in Windows Projected File System allows an authorized attacker to elevate privileges loc… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32068 | Microsoft | high | 7.0 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Windo… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27930 | Microsoft | medium | 5.5 | 0.0%
| | Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally. | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27928 | Microsoft | high | 8.7 | 0.2%
| | Improper input validation in Windows Hello allows an unauthorized attacker to bypass a security feat… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27925 | Microsoft | medium | 6.5 | 0.1%
| | Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27923 | Microsoft | high | 7.8 | 0.0%
| | Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27922 | Microsoft | high | 7.0 | 0.0%
| | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27920 | Microsoft | high | 7.8 | 0.0%
| | Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an author… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27916 | Microsoft | high | 7.8 | 0.0%
| | Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker t… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27914 | Microsoft | high | 7.8 | 0.1%
| | Improper access control in Microsoft Management Console allows an authorized attacker to elevate pri… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27913 | Microsoft | high | 7.7 | 0.1%
| | Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security … | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27912 | Microsoft | high | 8.0 | 0.3%
| | Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over … | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27911 | Microsoft | high | 7.8 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Windo… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27910 | Microsoft | high | 7.8 | 0.0%
| | Improper handling of insufficient permissions or privileges in Windows Installer allows an authorize… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-27909 | Microsoft | high | 7.8 | 0.1%
| | Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privil… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26184 | Microsoft | high | 7.8 | 0.0%
| | Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privilege… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26182 | Microsoft | high | 7.0 | 0.0%
| | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26178 | Microsoft | high | 8.8 | 0.2%
| | Integer size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized att… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26177 | Microsoft | high | 7.0 | 0.0%
| | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26176 | Microsoft | high | 7.8 | 0.0%
| | Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized atta… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26173 | Microsoft | high | 7.0 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Windo… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26172 | Microsoft | high | 7.8 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Windo… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26170 | Microsoft | high | 7.8 | 0.1%
| | Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privilege… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26169 | Microsoft | medium | 6.1 | 0.1%
| | Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information loca… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26168 | Microsoft | high | 7.8 | 0.0%
| | Concurrent execution using shared resource with improper synchronization ('race condition') in Windo… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26163 | Microsoft | high | 7.8 | 0.0%
| | Double free in Windows Kernel allows an authorized attacker to elevate privileges locally. | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26159 | Microsoft | high | 7.8 | 0.0%
| | Missing authentication for critical function in Windows Remote Desktop Licensing Service allows an a… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26156 | Microsoft | high | 7.8 | 0.1%
| | Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locall… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26153 | Microsoft | high | 7.8 | 0.0%
| | Out-of-bounds read in Windows Encrypting File System (EFS) allows an authorized attacker to elevate … | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-26152 | Microsoft | high | 7.0 | 0.1%
| | Insecure storage of sensitive information in Windows Cryptographic Services allows an authorized att… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-20806 | Microsoft | medium | 5.5 | 0.1%
| | Access of resource using incompatible type ('type confusion') in Windows COM allows an authorized at… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-20928 | Microsoft | medium | 4.6 | 0.2%
| | Improper removal of sensitive information before storage or transfer in Windows Recovery Environment… | Apr 14, 2026 | Apr 24, 2026 |
| | CVE-2026-32212 | Microsoft | medium | 5.5 | 0.1%
| | Improper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll)… | Apr 14, 2026 | Apr 24, 2026 |