Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.8 HIGH
CVE-2026-33120 — Microsoft SQL Server Remote Code Execution Vulnerability

Untrusted pointer dereference in SQL Server allows an authorized attacker to execute code over a network.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.5 HIGH
CVE-2026-33116 — .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
8.4 HIGH
CVE-2026-33115 — Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
8.4 HIGH
CVE-2026-33114 — Microsoft Word Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.0 HIGH
CVE-2026-33104 — Win32k Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
5.5 MEDIUM
CVE-2026-33103 — Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

Improper access control in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to disclose information locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.8 HIGH
CVE-2026-33101 — Windows Print Spooler Elevation of Privilege Vulnerability

Use after free in Windows Print Spooler Components allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.0 HIGH
CVE-2026-33100 — Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.0 HIGH
CVE-2026-33099 — Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.8 HIGH
CVE-2026-33098 — Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability

Use after free in Windows Container Isolation FS Filter Driver allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.5 HIGH
CVE-2026-33096 — HTTP.sys Denial of Service Vulnerability

Out-of-bounds read in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.8 HIGH
CVE-2026-33095 — Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
5.9 MEDIUM
CVE-2026-32226 — .NET Framework Denial of Service Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in .NET Framework allows an unauthorized attacker to deny service over a network.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
8.8 HIGH
CVE-2026-32225 — Windows Shell Security Feature Bypass Vulnerability

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.0 HIGH
CVE-2026-32224 — Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

Use after free in Windows Server Update Service allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
6.8 MEDIUM
CVE-2026-32223 — Windows USB Printing Stack (usbprint.sys) Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows USB Print Driver allows an unauthorized attacker to elevate privileges with a physical attack.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.8 HIGH
CVE-2026-32222 — Windows Win32k Elevation of Privilege Vulnerability

Untrusted pointer dereference in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
8.4 HIGH
CVE-2026-32221 — Windows Graphics Component Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
4.4 MEDIUM
CVE-2026-32220 — UEFI Secure Boot Security Feature Bypass Vulnerability

Improper access control in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
7.0 HIGH
CVE-2026-32219 — Microsoft Brokering File System Elevation of Privilege Vulnerability

Double free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

Apr 14, 2026 Apr 14, 2026
Apr 14, 2026
Apr 14, 2026
Showing 20 of 6616 Results