CWE-822: CWE-822

This vulnerability in Microsoft SQL Server's Native Scoring component allows authenticated attackers to execute arbitrary code remotely. It affects SQ...

CVE-2024-38104 is a remote code execution vulnerability in the Windows Fax Service that allows an attacker to execute arbitrary code with SYSTEM privi...

This vulnerability in NVIDIA GPU Display Driver for Linux allows attackers to exploit a kernel mode layer handler flaw, potentially leading to code ex...

An improper input validation vulnerability in AMD Graphics Drivers allows attackers to supply specially crafted pointers, potentially leading to arbit...

This vulnerability in Intel Graphics Drivers allows an authenticated local user to potentially escalate privileges by exploiting an untrusted pointer ...

CVE-2025-24084 is an untrusted pointer dereference vulnerability in Windows Subsystem for Linux that allows local attackers to execute arbitrary code ...

This vulnerability allows remote code execution through specially crafted Excel files. Attackers can exploit this by tricking users into opening malic...

This vulnerability involves an untrusted pointer dereference in certain Intel Graphics Drivers, allowing an authenticated user with local access to po...

This vulnerability allows attackers with local access and valid desktop user credentials to elevate their privileges to SYSTEM level by passing invali...

This vulnerability allows memory corruption when reading ACPI configuration through user mode applications on Qualcomm chipsets. Attackers could poten...

This vulnerability allows attackers to bypass Secure Boot protections on affected systems, potentially enabling them to load and execute unauthorized ...

CVE-2026-21250 is a local privilege escalation vulnerability in Windows HTTP.sys driver where an authorized attacker can exploit untrusted pointer der...

CVE-2026-21232 is an untrusted pointer dereference vulnerability in Windows HTTP.sys that allows an authenticated attacker to escalate privileges loca...

This vulnerability allows an attacker to execute arbitrary code on a victim's system by exploiting an untrusted pointer dereference in Microsoft Excel...

This vulnerability allows an attacker to execute arbitrary code on a victim's system by exploiting an untrusted pointer dereference in Microsoft Excel...

This vulnerability allows an unauthorized attacker to execute arbitrary code on a local system by exploiting an untrusted pointer dereference in Micro...

A heap-based buffer overflow vulnerability in the Windows Cloud Files Mini Filter Driver allows authenticated attackers to execute arbitrary code with...

CVE-2026-20938 is an untrusted pointer dereference vulnerability in Windows Virtualization-Based Security (VBS) Enclave that allows an authenticated a...

This vulnerability allows an authorized attacker to exploit an untrusted pointer dereference in the Windows Cloud Files Mini Filter Driver to elevate ...

This vulnerability is a type confusion flaw in Windows Win32K - ICOMP that allows an authenticated attacker to escalate privileges locally. It affects...

This vulnerability involves memory corruption in sensor IOCTL preprocessing, allowing attackers to potentially execute arbitrary code or cause system ...

This CVE describes a memory corruption vulnerability in Qualcomm video processing components that could allow attackers to execute arbitrary code or c...

This vulnerability allows memory corruption when processing JPEG data through IOCTL calls without proper validation. Attackers could potentially execu...

This vulnerability allows an attacker to execute arbitrary code on a victim's system by exploiting an untrusted pointer dereference in Microsoft Excel...

CVE-2025-60713 is a local privilege escalation vulnerability in Windows Routing and Remote Access Service (RRAS) where an authenticated attacker can e...

This vulnerability allows an authorized attacker to exploit an untrusted pointer dereference in Windows Remote Desktop to elevate privileges locally. ...

This vulnerability allows an authorized attacker to exploit an untrusted pointer dereference in the Windows Device Association Broker service to eleva...

This CVE describes an elevation of privilege vulnerability in the Agere Modem driver (ltmdm64.sys) that ships with Windows. Attackers could exploit th...

This vulnerability allows memory corruption when processing escape commands from userspace, potentially leading to arbitrary code execution or system ...

This vulnerability allows attackers to cause memory corruption through improper handling of IOCTL calls in Qualcomm camera platform drivers. Successfu...

This vulnerability allows an authenticated attacker to exploit an untrusted pointer dereference in the Windows MBT Transport driver to gain elevated l...

This vulnerability allows memory corruption when processing DDI command calls in Qualcomm components, potentially enabling attackers to execute arbitr...

This vulnerability allows an authorized attacker to exploit an untrusted pointer dereference in the Windows Ancillary Function Driver for WinSock to e...

A use-after-free vulnerability in Microsoft Office Word allows attackers to execute arbitrary code on affected systems by tricking users into opening ...

This Windows kernel vulnerability allows an authenticated attacker to exploit untrusted pointer dereference to gain elevated local privileges. It affe...

CVE-2025-24083 is an untrusted pointer dereference vulnerability in Microsoft Office that allows local attackers to execute arbitrary code by exploiti...

This vulnerability allows memory corruption in Qualcomm components when a malicious user provides a kernel address instead of a valid user buffer addr...

Microsoft Excel contains a remote code execution vulnerability that allows attackers to execute arbitrary code by tricking users into opening speciall...

This Windows Core Messaging vulnerability allows attackers to elevate privileges on affected systems. An authenticated attacker could exploit this to ...

This vulnerability allows memory corruption when userspace makes a compat IOCTL call followed by a normal IOCTL call, potentially leading to privilege...

This vulnerability allows remote code execution when a user opens a specially crafted Microsoft Word document. Attackers could gain full control of af...

This vulnerability in the Windows Common Log File System (CLFS) driver allows an authenticated attacker to gain SYSTEM-level privileges on affected sy...

This vulnerability allows an authenticated attacker to execute arbitrary code in Windows Secure Kernel Mode, potentially gaining SYSTEM privileges. It...

This vulnerability allows memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a Qualcomm driver. Attackers ...