CVE-2018-8450 — CVSS 8.8 (high): A remote code execution vulnerability exists when Windows Search handles objects in memory, aka "Windows Search Remote Code Execution…
CVE-2026-11317: A denial of service security issue exists in the affected product. The security issue stems from a fault occurring when a crafted CIP…
CVE-2022-25762 — CVSS 8.6 (high): If a web application sends a WebSocket message concurrently with the WebSocket connection closing when running on Apache Tomcat 8.5.0 to…
CVE-2020-26070 — CVSS 8.6 (high): A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers…
CVE-2017-1145 — CVSS 8.6 (high): IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents when they are no longer needed, which could allow a user to cause a…
CVE-2022-39368 — CVSS 8.2 (high): Eclipse Californium is a Java implementation of RFC7252 - Constrained Application Protocol for IoT Cloud services. In versions prior to…
CVE-2022-23634 — CVSS 8.0 (high): Puma is a Ruby/Rack web server built for parallelism. Prior to `puma` version `5.6.2`, `puma` may not always call `close` on the response…
CVE-2026-45174 — CVSS 7.8 (high): Idira Endpoint Privilege Manager Linux Agent versions prior to 26.5 allow a local attacker to potentially compromise the agent daemon…
CVE-2025-38385 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect…
CVE-2022-23033 — CVSS 7.8 (high): arm: guest_physmap_remove_page not removing the p2m mappings The functions to remove one or more entries from a guest p2m pagetable on Arm…
CVE-2021-0984 — CVSS 7.8 (high): In onNullBinding of ManagedServices.java, there is a possible permission bypass due to an incorrectly unbound service. This could lead to…
CVE-2021-1098 — CVSS 7.8 (high): NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it doesn't release some resources during…
CVE-2020-0203 — CVSS 7.8 (high): In freeIsolatedUidLocked of ProcessList.java, there is a possible UID reuse due to improper cleanup. This could lead to local escalation of…
CVE-2019-5607 — CVSS 7.8 (high): In FreeBSD 12.0-STABLE before r350222, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r350223, 11.3-RELEASE before…
CVE-2019-5603 — CVSS 7.8 (high): In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r350263, 11.3-RELEASE before…
CVE-2019-6488 — CVSS 7.8 (high): The string component in the GNU C Library (aka glibc or libc6) through 2.28, when running on the x32 architecture, incorrectly attempts to…
CVE-2018-8641 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory…
CVE-2018-8562 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k…
CVE-2018-8561 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege…
CVE-2018-8554 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege…
CVE-2018-8485 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege…
CVE-2018-8471 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU miniport driver handles objects in…
CVE-2018-8497 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka "Windows Kernel Elevation…
CVE-2018-8484 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka…
CVE-2018-8329 — CVSS 7.8 (high): An Elevation of Privilege vulnerability exists in Windows Subsystem for Linux when it fails to properly handle objects in memory, aka…
CVE-2018-8462 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka…
CVE-2018-8455 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka "Windows Kernel Elevation…
CVE-2018-8410 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory, aka "Windows…
CVE-2018-8401 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka…
CVE-2018-8400 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka…
CVE-2018-8282 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory…
CVE-2018-8233 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k…
CVE-2018-8213 — CVSS 7.8 (high): A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka "Windows Remote Code Execution…
CVE-2018-8210 — CVSS 7.8 (high): A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka "Windows Remote Code Execution…
CVE-2018-8165 — CVSS 7.8 (high): An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka…
CVE-2018-8164 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k…
CVE-2018-6592 — CVSS 7.8 (high): Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper…
CVE-2017-11016 — CVSS 7.8 (high): In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when memory allocation…
CVE-2017-0769 — CVSS 7.8 (high): A elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0…
CVE-2025-20127 — CVSS 7.7 (high): A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software…
CVE-2026-38641 — CVSS 7.5 (high): An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via loading a…
CVE-2026-54280 — CVSS 7.5 (high): AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, payload resources are not closed correctly…
CVE-2026-7263 — CVSS 7.5 (high): In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular…