📦

windows_11_26h1

Vendor: microsoft

Login to add this product to WatchStack
Actively Exploited 1 CISA KEV List
PoC / Exploits 14 Code Available
Total RCEs 16 Remote Access
Total CVEs 684 Total Indexed
Avg. EPSS 0.65% Exploit Prob.
Latest CVE CVE-2026-50507 Jun 09

Security Vulnerability Index

Page 6 / 69
7.8 CVSS
CVE-2026-45487

Time-of-check time-of-use (TOCTOU) race condition in Program Compatibility Assistant Service allows an authorized attacker to elevate privileges locally.

EPSS: 0.15%
9.8 CVSS
CVE-2026-44815
RCE

Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network.

EPSS: 0.57%
5.5 CVSS
CVE-2026-44814

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.

EPSS: 0.26%
7.8 CVSS
CVE-2026-44813

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

EPSS: 0.22%
7.8 CVSS
CVE-2026-44811

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

EPSS: 0.22%
8.4 CVSS
CVE-2026-44810

Improper authentication in Windows Cryptographic Services allows an unauthorized attacker to elevate privileges locally.

EPSS: 0.22%
7.8 CVSS
CVE-2026-44809

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

EPSS: 0.22%
7.8 CVSS
CVE-2026-44808

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

EPSS: 0.22%
7.8 CVSS
CVE-2026-44807

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

EPSS: 0.22%
7.8 CVSS
CVE-2026-44804

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

EPSS: 0.22%