Known Vulnerabilities for Windows Shell by Microsoft Corporation
Listed below are 10 of the newest known vulnerabilities associated with "Windows Shell" by "Microsoft Corporation".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-55201 json | Evil-WinRM through 3.9, fixed in commit 6ecd570, contains a path traversal vulnerability in the download_dir() function that ... | Not Provided | 2026-06-17 | 2026-06-18 |
| CVE-2026-49492 json | Markdown Preview Enhanced before 0.8.28 opens external files and links from the preview through a shell and does not validate... | Not Provided | 2026-06-05 | 2026-06-05 |
| CVE-2026-49402 json | Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.7.10, Deno's node:child_process implementation provided... | Not Provided | 2026-06-23 | 2026-06-25 |
| CVE-2026-45369 json | python-utcp is the python implementation of UTCP. Prior to 1.1.3, the _substitute_utcp_args method in cli_communication_proto... | Not Provided | 2026-05-14 | 2026-05-16 |
| CVE-2026-44170 json | MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11... | Not Provided | 2026-06-12 | 2026-07-10 |
| CVE-2026-42907 json | Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose informa... | Not Provided | 2026-06-09 | 2026-07-08 |
| CVE-2026-42906 json | Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose informa... | Not Provided | 2026-06-09 | 2026-06-10 |
| CVE-2026-32225 json | Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network. | Not Provided | 2026-04-14 | 2026-04-17 |
| CVE-2026-32202 json | Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network. | Not Provided | 2026-04-14 | 2026-05-26 |
| CVE-2026-32151 json | Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose informa... | Not Provided | 2026-04-14 | 2026-04-17 |