| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-26166 | Windows Shell Elevation of Privilege Vulnerability | Microsoft | Windows 11 version 22H3 | High | 7.0 | 2026-04-14 16:57:04 | Deep Dive |
| CVE-2026-26167 | Windows Push Notifications Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 8.8 | 2026-04-14 16:57:04 | Deep Dive |
| CVE-2026-26165 | Windows Shell Elevation of Privilege Vulnerability | Microsoft | Windows 11 version 22H3 | High | 7.0 | 2026-04-14 16:57:03 | Deep Dive |
| CVE-2026-26162 | Windows OLE Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2026-04-14 16:57:02 | Deep Dive |
| CVE-2026-26161 | Windows Sensor Data Service Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1809 | High | 7.8 | 2026-04-14 16:57:01 | Deep Dive |
| CVE-2026-26155 | Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability | Microsoft | Windows 10 Version 1607 | Medium | 6.5 | 2026-04-14 16:57:00 | Deep Dive |
| CVE-2026-26160 | Remote Desktop Licensing Service Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2026-04-14 16:57:00 | Deep Dive |
| CVE-2026-26154 | Windows Server Update Service (WSUS) Tampering Vulnerability | Microsoft | Windows Server 2012 | High | 7.5 | 2026-04-14 16:56:59 | Deep Dive |
| CVE-2026-26151 | Remote Desktop Spoofing Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.1 | 2026-04-14 16:56:58 | Deep Dive |
| CVE-2026-23670 | Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability | Microsoft | Windows 10 Version 1607 | Medium | 5.7 | 2026-04-14 16:56:56 | Deep Dive |
| CVE-2026-25184 | Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability | Microsoft | Windows 11 version 22H3 | High | 7.0 | 2026-04-14 16:56:55 | Deep Dive |
| CVE-2026-20930 | Windows Management Services Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1809 | High | 7.8 | 2026-04-14 16:56:52 | Deep Dive |
| CVE-2026-34069 | nimiq-consensus panics via RequestMacroChain micro-block locator | nimiq | core-rs-albatross | Medium | 5.3 | 2026-04-13 23:55:53 | Deep Dive |
| CVE-2026-32605 | Nimiq: Remote crash via off-by-one signer bounds check in proposal buffer | nimiq | core-rs-albatross | High | 7.5 | 2026-04-13 18:54:59 | Deep Dive |
| CVE-2026-34480 | Apache Log4j Core: Silent log event loss in XmlLayout due to unescaped XML 1.0 forbidden characters | Apache Software Foundation | Apache Log4j Core | - | - | 2026-04-10 15:42:04 | Deep Dive |
| CVE-2026-34478 | Apache Log4j Core: Log injection in Rfc5424Layout due to silent configuration incompatibility | Apache Software Foundation | Apache Log4j Core | - | - | 2026-04-10 15:40:18 | Deep Dive |
| CVE-2026-34477 | Apache Log4j Core: verifyHostName attribute silently ignored in TLS configuration, allowing hostname verification bypass | Apache Software Foundation | Apache Log4j Core | - | - | 2026-04-10 15:36:20 | Deep Dive |
| CVE-2026-40093 | nimiq-blockchain is missing a wall-clock upper bound on block timestamps | nimiq | core-rs-albatross | High | 8.1 | 2026-04-09 20:29:46 | Deep Dive |
| CVE-2026-34578 | OPNsense has an LDAP Injection via Unsanitized Username in Authentication | opnsense | core | High | 8.2 | 2026-04-09 14:34:20 | Deep Dive |
| CVE-2026-39538 | WordPress Mikado Core plugin <= 1.6 - Local File Inclusion vulnerability | Mikado-Themes | Mikado Core | - | - | 2026-04-08 08:30:17 | Deep Dive |