Known Vulnerabilities for Windows by Microsoft
Listed below are 10 of the newest known vulnerabilities associated with "Windows" by "Microsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-42896 json | Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-42825 json | Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally. | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-42249 json | Ollama for Windows contains a Remote Code Execution vulnerability in its update mechanism due to improper handling of attack... | Not Provided | 2026-04-29 | 2026-04-29 |
| CVE-2026-42248 json | Ollama for Windows does not perform integrity or authenticity verification of downloaded update executables. Unlike other pla... | Not Provided | 2026-04-29 | 2026-04-29 |
| CVE-2026-42141 json | Xibo is an open source digital signage platform with a web content management system and Windows display player software. Pri... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-41952 json | Local privilege escalation due to improper input validation. The following products are affected: Acronis DeviceLock DLP (Win... | Not Provided | 2026-04-29 | 2026-04-29 |
| CVE-2026-41527 json | KDE Kleopatra before 26.08.0 on Windows allows local users to obtain the privileges of a Kleopatra user, because there is an ... | Not Provided | 2026-04-21 | 2026-04-22 |
| CVE-2026-41421 json | SiYuan is an open-source personal knowledge management system. Prior to 3.6.5, SiYuan desktop renders notification messages a... | Not Provided | 2026-04-24 | 2026-04-25 |
| CVE-2026-41389 json | OpenClaw versions 2026.4.7 before 2026.4.15 fail to enforce local-root containment on tool-result media paths, allowing arbit... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-41288 json | Incorrect permission assignment for a resource in the patch management component of the WatchGuard Agent on Windows allows an... | Not Provided | 2026-05-06 | 2026-05-06 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | vista | |||
| Operating System | Microsoft | Windows | server_2008 | |||
| Operating System | Microsoft | Windows | server_2008 | |||
| Operating System | Microsoft | Windows | server_2008 | |||
| Operating System | Microsoft | Windows | 3.11 | |||
| Operating System | Microsoft | Windows | 3.1 | |||
| Operating System | Microsoft | Windows | 3.0 | |||
| Operating System | Microsoft | Windows | 2000 | |||
| Operating System | Microsoft | Windows | 2000 | |||
| Operating System | Microsoft | Windows | 2.0 |