CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2026-41088 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2026-41088
12 May 2026 — External control of file name or path in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41088 • CWE-73: External Control of File Name or Path •
CVSS: 8.1EPSS: 0%CPEs: 20EXPL: 0CVE-2026-40415 – Windows TCP/IP Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2026-40415
12 May 2026 — Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40415 • CWE-416: Use After Free •
CVSS: 7.4EPSS: 0%CPEs: 19EXPL: 0CVE-2026-40414 – Windows TCP/IP Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2026-40414
12 May 2026 — Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40414 • CWE-476: NULL Pointer Dereference •
CVSS: 7.0EPSS: 0%CPEs: 24EXPL: 0CVE-2026-40410 – Windows SMB Client Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2026-40410
12 May 2026 — Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40410 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2026-40408 – Windows WAN ARP Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2026-40408
12 May 2026 — Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40408 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2026-40407 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2026-40407
12 May 2026 — Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40407 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 25EXPL: 0CVE-2026-40406 – Windows TCP/IP Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2026-40406
12 May 2026 — Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40406 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2026-40399 – Windows TCP/IP Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2026-40399
12 May 2026 — Stack-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40399 • CWE-121: Stack-based Buffer Overflow •
CVSS: 6.2EPSS: 0%CPEs: 25EXPL: 0CVE-2026-40380 – Windows Volume Manager Extension Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2026-40380
12 May 2026 — Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40380 • CWE-122: Heap-based Buffer Overflow CWE-125: Out-of-bounds Read CWE-197: Numeric Truncation Error •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2026-40377 – Microsoft Cryptographic Services Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2026-40377
12 May 2026 — Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40377 • CWE-122: Heap-based Buffer Overflow •