TheWindowsUpdate.com

Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network. Continue reading CVE-2026-44815 DHCP Client Service Remote Code Execution Vulnerability→

Improper limitation of a pathname to a restricted directory (‘path traversal’) in Microsoft Azure Kubernetes Service allows an authorized attacker to execute code locally. Continue reading CVE-2026-32193 Azure Kubernetes Service (AKS) Remote Code Execution Vulnerability→

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. Continue reading CVE-2026-44809 Windows Common Log File System Driver Elevation of Privilege Vulnerability→

Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges locally. Continue reading CVE-2026-41092 Microsoft Kinect Elevation of Privilege Vulnerability→

Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2026-45639 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability→

Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorized attacker to elevate privileges locally. Continue reading CVE-2026-47292 Visual Studio Code MSSQL Extension Remote Code Execution Vulnerability→

Access of resource using incompatible type (‘type confusion’) in Microsoft Office allows an unauthorized attacker to execute code locally. Continue reading CVE-2026-45458 Microsoft Outlook and Word Remote Code Execution Vulnerability→

Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network. Continue reading CVE-2026-47291 HTTP.sys Remote Code Execution Vulnerability→