Aggregator

CVE-2026-21510 | Microsoft Windows up to Server 2025 Shell protection mechanism

Vuldb Updates
1 month 3 weeks ago
A vulnerability was found in Microsoft Windows and classified as critical. The impacted element is an unknown function of the component Shell. Executing a manipulation can lead to protection mechanism failure. This vulnerability is handled as CVE-2026-21510. The attack can be executed remotely. Additionally, an exploit exists. It is best practice to apply a patch to resolve this issue.
vuldb.com

CVE-2026-21514 | Microsoft Word reliance on untrusted inputs in a security decision

Vuldb Updates
1 month 3 weeks ago
A vulnerability categorized as critical has been discovered in Microsoft Word. Affected by this vulnerability is an unknown functionality. Such manipulation leads to reliance on untrusted inputs in a security decision. This vulnerability is referenced as CVE-2026-21514. It is possible to launch the attack remotely. Furthermore, an exploit is available. A patch should be applied to remediate this issue.
vuldb.com

CVE-2026-21519 | Microsoft Windows up to Server 2025 Desktop Window Manager type confusion

Vuldb Updates
1 month 3 weeks ago
A vulnerability described as critical has been identified in Microsoft Windows. This issue affects some unknown processing of the component Desktop Window Manager. The manipulation results in type confusion. This vulnerability is cataloged as CVE-2026-21519. The attack must be initiated from a local position. Furthermore, there is an exploit available. It is best practice to apply a patch to resolve this issue.
vuldb.com

CVE-2026-21525 | Microsoft Windows up to Server 2025 Remote Access Connection Manager null pointer dereference

Vuldb Updates
1 month 3 weeks ago
A vulnerability, which was classified as problematic, has been found in Microsoft Windows. The impacted element is an unknown function of the component Remote Access Connection Manager. Performing a manipulation results in null pointer dereference. This vulnerability is reported as CVE-2026-21525. The attack requires a local approach. Moreover, an exploit is present. It is suggested to install a patch to address this issue.
vuldb.com

Microsoft Patch Tuesday security updates for February 2026 fix six actively exploited zero-days

Security Affairs
1 month 3 weeks ago
Microsoft Patch Tuesday security updates for February 2026 fix six actively exploited zero-day vulnerabilities. Microsoft Patch Tuesday security updates for February 2026 fix 58 new security flaws across Windows, Office, Azure, Edge, Exchange, Hyper-V, WSL, and other components, rising to 62 CVEs when third-party updates are included. Five vulnerabilities are Critical, two Moderate, and most […]
Pierluigi Paganini

Survey Sees Little Post-Quantum Computing Encryption Progress

Security Boulevard
1 month 3 weeks ago

A global survey of 4,149 IT and security practitioners finds that while three-quarters (75%) expect a quantum computer will be capable of breaking traditional public key encryption within five years, only 38% at this point in time are preparing to adopt post-quantum cryptography. Conducted by the Ponemon Institute on behalf of Entrust, a provider of..

The post Survey Sees Little Post-Quantum Computing Encryption Progress appeared first on Security Boulevard.

Michael Vizard

Patch Tuesday, February 2026 Edition

Krebs on Security
1 month 3 weeks ago
Microsoft today released updates to fix more than 50 security holes in its Windows operating systems and other software, including patches for a whopping six "zero-day" vulnerabilities that attackers are already exploiting in the wild.
BrianKrebs

Managed ad