NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID Description Published Base Score Attack Vector Severity Actions
CVE-2026-58635 Improper neutralization of special elements used in a command ('command injection') in Windows Narrator Braille allows an authorized attacker to eleva... 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-58631 Improper authorization in Windows Admin Center allows an authorized attacker to execute code locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-58618 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-58614 Out-of-bounds read in Windows Kernel allows an authorized attacker to bypass a security feature locally. 2026-07-14 5.5 LOCAL MEDIUM NVD
CVE-2026-58610 Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-58609 Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to execute code locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-58608 Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Print Spooler Components allows an authorized a... 2026-07-14 8.8 NETWORK HIGH NVD
CVE-2026-58602 Use after free in Windows Kernel Mode Driver allows an authorized attacker to elevate privileges locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-58601 Heap-based buffer overflow in Virtual Hard Disk (VHD) Miniport Driver allows an authorized attacker to elevate privileges locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-58595 Improper restriction of rendered ui layers or frames in Microsoft Bing App for IOS allows an unauthorized attacker to perform spoofing over a network. 2026-07-14 8.1 NETWORK HIGH NVD
CVE-2026-58526 Use after free in Windows Storage allows an authorized attacker to elevate privileges locally. 2026-07-14 7.0 LOCAL HIGH NVD
CVE-2026-58279 Missing authorization in Azure CycleCloud allows an authorized attacker to elevate privileges over a network. 2026-07-14 6.5 NETWORK MEDIUM NVD
CVE-2026-57979 Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network. 2026-07-14 6.5 NETWORK MEDIUM NVD
CVE-2026-57976 Null pointer dereference in Active Directory Domain Services allows an authorized attacker to deny service over a network. 2026-07-14 6.5 NETWORK MEDIUM NVD
CVE-2026-57969 Missing authentication for critical function in Azure CycleCloud allows an authorized attacker to elevate privileges over a network. 2026-07-14 8.8 NETWORK HIGH NVD