NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-32196	Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an unauthorized attacker to perfor...	2026-04-14	6.1	NETWORK	MEDIUM	NVD
CVE-2026-32195	Stack-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.	2026-04-14	7.0	LOCAL	HIGH	NVD
CVE-2026-32192	Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.	2026-04-14	7.8	LOCAL	HIGH	NVD
CVE-2026-32190	Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.	2026-04-14	8.4	LOCAL	HIGH	NVD
CVE-2026-32189	Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.	2026-04-14	7.8	LOCAL	HIGH	NVD
CVE-2026-32188	Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.	2026-04-14	7.1	LOCAL	HIGH	NVD
CVE-2026-32184	Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elevate privileges locally.	2026-04-14	7.8	LOCAL	HIGH	NVD
CVE-2026-32183	Improper neutralization of special elements used in a command ('command injection') in Windows Snipping Tool allows an unauthorized attacker to execut...	2026-04-14	7.8	LOCAL	HIGH	NVD
CVE-2026-32181	Improper privilege management in Microsoft Windows allows an authorized attacker to deny service locally.	2026-04-14	5.5	LOCAL	MEDIUM	NVD
CVE-2026-32178	Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network.	2026-04-14	7.5	NETWORK	HIGH	NVD
CVE-2026-32176	Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges...	2026-04-14	6.7	LOCAL	MEDIUM	NVD
CVE-2026-32171	Insufficiently protected credentials in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.	2026-04-14	8.8	NETWORK	HIGH	NVD
CVE-2026-32168	Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.	2026-04-14	7.8	LOCAL	HIGH	NVD
CVE-2026-32167	Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges...	2026-04-14	6.7	LOCAL	MEDIUM	NVD
CVE-2026-32165	Use after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally.	2026-04-14	7.8	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.