Month: March 2026

Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network. Continue reading CVE-2026-26111 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability→

Improper neutralization of input during web page generation (‘cross-site scripting’) in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network. Continue reading CVE-2026-26105 Microsoft SharePoint Server Spoofing Vulnerability→

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. Continue reading CVE-2026-26132 Windows Kernel Elevation of Privilege Vulnerability→

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2026-26112 Microsoft Excel Remote Code Execution Vulnerability→

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attacker to perform spoofing over a network. Continue reading CVE-2026-23656 Windows App Installer Spoofing Vulnerability→

Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network. Continue reading CVE-2026-26127 .NET Denial of Service Vulnerability→

Server-side request forgery (ssrf) in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network. Continue reading CVE-2026-26121 Azure IOT Explorer Spoofing Vulnerability→

Improper input validation in System Center Operations Manager allows an authorized attacker to elevate privileges over a network. Continue reading CVE-2026-20967 System Center Operations Manager (SCOM) Elevation of Privilege Vulnerability→