NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID Description Published Base Score Attack Vector Severity Actions
CVE-2026-54990 Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. 2026-07-14 9.8 NETWORK CRITICAL NVD
CVE-2026-54989 Use after free in Quality Windows Audio/Video Experience (QWAVE) service allows an authorized attacker to elevate privileges locally. 2026-07-14 7.0 LOCAL HIGH NVD
CVE-2026-54988 Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. 2026-07-14 6.1 LOCAL MEDIUM NVD
CVE-2026-54987 Heap-based buffer overflow in Windows Overlay Filter allows an authorized attacker to elevate privileges locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-54986 Heap-based buffer overflow in Windows Win32K allows an authorized attacker to elevate privileges locally. 2026-07-14 7.8 LOCAL HIGH NVD
CVE-2026-54983 Stack-based buffer overflow in Active Directory Federation Services (AD FS) allows an unauthorized attacker to deny service over a network. 2026-07-14 7.5 NETWORK HIGH NVD
CVE-2026-54982 Integer underflow (wrap or wraparound) in Reliable Multicast Transport Driver (RMCAST) allows an unauthorized attacker to execute code over an adjacen... 2026-07-14 8.8 ADJACENT_NETWORK HIGH NVD
CVE-2026-54433 In Roundcube Webmail before 1.6.17 and 1.7.x before 1.7.2, there is Stored Cross-Site Scripting (XSS) via a crafted plain-text email message. The atta... 2026-07-14 7.2 NETWORK HIGH NVD
CVE-2026-54432 Roundcube Webmail before 1.6.17 and 1.7.x before 1.7.2 allows Stored Cross-Site Scripting (XSS). The issue occurs because the attachment MIME type is ... 2026-07-14 4.7 NETWORK MEDIUM NVD
CVE-2026-54132 Heap-based buffer overflow in Windows Kernel allows an unauthorized attacker to elevate privileges with a physical attack. 2026-07-14 6.8 PHYSICAL MEDIUM NVD
CVE-2026-54129 Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally. 2026-07-14 7.0 LOCAL HIGH NVD
CVE-2026-54127 Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally. 2026-07-14 7.4 LOCAL HIGH NVD
CVE-2026-54122 Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code locally. 2026-07-14 8.4 LOCAL HIGH NVD
CVE-2026-54119 Loop with unreachable exit condition ('infinite loop') in Windows Active Directory allows an unauthorized attacker to deny service over a network. 2026-07-14 7.5 NETWORK HIGH NVD
CVE-2026-54118 Deserialization of untrusted data in SQL Server allows an authorized attacker to execute code over a network. 2026-07-14 8.8 NETWORK HIGH NVD