CVE-2026-32178
7.5 HIGH 7.5Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network.
CVE Vulnerability Database
Complete database of CVE vulnerabilities. Track critical security threats, exploits and patches. Updated daily from NVD NIST.
CVE-2026-32176
6.7 MEDIUM 6.7Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.
CVE-2026-32171
8.8 HIGH 8.8Insufficiently protected credentials in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.
Insufficiently
Details
CVE-2026-32168
7.8 HIGH 7.8Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
CVE-2026-32167
6.7 MEDIUM 6.7Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.
CVE-2026-32165
7.8 HIGH 7.8Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally.
CVE-2026-32164
7.8 HIGH 7.8Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.
Concurrent
Details
CVE-2026-32163
7.8 HIGH 7.8Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.
Concurrent
Details
CVE-2026-32162
8.4 HIGH 8.4Acceptance of extraneous untrusted data with trusted data in Windows COM allows an unauthorized attacker to elevate privileges locally.
Acceptance
Details
CVE-2026-32160
7.8 HIGH 7.8Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.
Concurrent
Details
Statistics
Total
38636
Critical
3366
High
12549