|
391
|
7.8 |
HIGH
Local
|
adobe
|
acrobat
acrobat_reader
|
Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. E…
New
|
CWE-787
Out-of-bounds Write
|
CVE-2026-47911
|
2026-06-12 04:15 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
392
|
7.8 |
HIGH
Local
|
adobe
|
acrobat
acrobat_reader
|
Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploit…
New
|
CWE-416
Use After Free
|
CVE-2026-47912
|
2026-06-12 04:15 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
393
|
7.8 |
HIGH
Local
|
adobe
|
acrobat
acrobat_reader
|
Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploit…
New
|
CWE-416
Use After Free
|
CVE-2026-47913
|
2026-06-12 04:08 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
394
|
7.8 |
HIGH
Local
|
adobe
|
acrobat
acrobat_reader
|
Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploit…
New
|
CWE-416
Use After Free
|
CVE-2026-47914
|
2026-06-12 04:08 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
395
|
6.1 |
MEDIUM
Network
|
microsoft
|
sharepoint_server
|
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
Update
|
CWE-79
Cross-site Scripting
|
CVE-2026-33113
|
2026-06-12 04:03 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
396
|
5.4 |
MEDIUM
Network
|
adobe
|
experience_manager
|
Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2026-34692
|
2026-06-12 04:03 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
397
|
8.1 |
HIGH
Network
|
microsoft
|
visual_studio_code
|
Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network.
Update
|
CWE-20
NVD-CWE-noinfo
Improper Input Validation
|
CVE-2026-40376
|
2026-06-12 03:56 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
398
|
5.5 |
MEDIUM
Local
|
microsoft
|
windows_server_2019
windows_server_2022
windows_server_2025
|
Use after free in Windows Network Controller (NC) Host Agent allows an authorized attacker to deny service locally.
Update
|
CWE-416
CWE-822
Use After Free
Untrusted Pointer Dereference
|
CVE-2026-44805
|
2026-06-12 03:55 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
399
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2022
windows_server_2025
|
Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to execute code over a network.
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-45648
|
2026-06-12 03:54 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
400
|
7.5 |
HIGH
Network
|
svelte
|
svelte
|
Svelte is a performance oriented web framework. From version 5.51.5 to before version 5.55.7, an internal regex in the Svelte runtime can take exponential time to test in <svelte:element this={tag}><…
Update
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2026-42567
|
2026-06-12 03:54 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
