Known Vulnerabilities for Powershell by Microsoft
Listed below are 10 of the newest known vulnerabilities associated with "Powershell" by "Microsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57453 json | Vim is an open source, command line text editor. From 9.1.1784 until 9.2.0678, when the bundled zip plugin autoload/zip.vim f... | Not Provided | 2026-06-25 | 2026-06-26 |
| CVE-2026-53836 json | OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in PowerShell encoded-command handling that allows attac... | Not Provided | 2026-06-12 | 2026-06-15 |
| CVE-2026-48989 json | Windows-MCP is an open-source project that integrates AI agents with Windows. In versions prior to 0.7.5, certain HTTP modes ... | Not Provided | 2026-06-17 | 2026-06-18 |
| CVE-2026-46710 json | Notepad++ is a free and open-source source code editor. From 8.9.4 until 8.9.6, Notepad++ contains a local privilege escalati... | Not Provided | 2026-06-26 | 2026-06-29 |
| CVE-2026-45369 json | python-utcp is the python implementation of UTCP. Prior to 1.1.3, the _substitute_utcp_args method in cli_communication_proto... | Not Provided | 2026-05-14 | 2026-05-16 |
| CVE-2026-45322 json | Microsoft UFO open-source framework for intelligent automation across devices and platforms. Microsoft UFO tagged releases up... | Not Provided | 2026-05-27 | 2026-05-28 |
| CVE-2026-42598 json | Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers. From 2.4.0, to bef... | Not Provided | 2026-05-14 | 2026-05-14 |
| CVE-2026-33414 json | Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability... | Not Provided | 2026-04-14 | 2026-06-30 |
| CVE-2026-26170 json | Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally. | Not Provided | 2026-04-14 | 2026-04-24 |
| CVE-2026-26143 json | Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally. | Not Provided | 2026-04-14 | 2026-04-24 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Microsoft | Powershell | 7.0 |