📦

windows_11_26h1

Vendor: microsoft

Login to add this product to WatchStack
Actively Exploited 1 CISA KEV List
PoC / Exploits 14 Code Available
Total RCEs 16 Remote Access
Total CVEs 685 Total Indexed
Avg. EPSS 0.65% Exploit Prob.
Latest CVE CVE-2026-50507 Jun 09

Security Vulnerability Index

Page 16 / 69
7.8 CVSS
CVE-2026-33840

Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

EPSS: 2.01%
7.0 CVSS
CVE-2026-33839

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

EPSS: 0.19%
7.8 CVSS
CVE-2026-33838

Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally.

EPSS: 0.40%
7.8 CVSS
CVE-2026-33837

Heap-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

EPSS: 1.84%
7.8 CVSS
CVE-2026-33835

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

EPSS: 2.12%
7.8 CVSS
CVE-2026-33834

Improper access control in Windows Event Logging Service allows an authorized attacker to elevate privileges locally.

EPSS: 0.27%
4.4 CVSS
CVE-2026-32209

Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally.

EPSS: 0.20%
6.7 CVSS
CVE-2026-32170

Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

EPSS: 0.32%
7.5 CVSS
CVE-2026-32161

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver allows an unauthorized attacker to execute code over an adjacent network.

EPSS: 0.30%
6.7 CVSS
CVE-2026-21530

Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

EPSS: 0.32%