mscve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	MS:CVE-2026-3039	BIND 9 server memory exhaustion during GSS-API TKEY negotiation_MS:CVE-2026-3039 {“lastseen”:”2026-05-23T07:16:22″,”description”:””,”published”:”2026-05-23T08:01:...	N/A	N/A	May 23, 2026	MSCVE
HIGH 7.5	MS:CVE-2026-5946	Invalid handling of CLASS != IN_MS:CVE-2026-5946 {“lastseen”:”2026-05-23T07:16:22″,”description”:””,”published”:”2026-05-23T08:01:...	N/A	N/A	May 23, 2026	MSCVE
CRITICAL 9.8	MS:CVE-2026-3593	Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation_MS:CVE-2026-3593 {“lastseen”:”2026-05-23T07:16:22″,”description”:””,”published”:”2026-05-23T08:01:...	N/A	N/A	May 23, 2026	MSCVE
MEDIUM 5.3	MS:CVE-2026-5950	Unbounded resend loop in BIND 9 resolver_MS:CVE-2026-5950 {“lastseen”:”2026-05-23T07:16:22″,”description”:””,”published”:”2026-05-23T08:01:...	N/A	N/A	May 23, 2026	MSCVE
HIGH 7.5	MS:CVE-2026-5947	SIG(0) validation during query flood may lead to undefined behavior_MS:CVE-2026-5947 {“lastseen”:”2026-05-23T07:16:22″,”description”:””,”published”:”2026-05-23T08:01:...	N/A	N/A	May 23, 2026	MSCVE
NONE	MS:CVE-2026-47280	Azure Resource Manager Elevation of Privilege Vulnerability_MS:CVE-2026-47280 Improper authentication in Azure Resource Manager (ARM) allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	May 21, 2026	MSCVE
NONE	MS:CVE-2026-35430	Azure Privileged Identity Management (PIM) Elevation of Privilege Vulnerability_MS:CVE-2026-35430 Authorization bypass through user-controlled key in Azure Privileged Identity Management (PIM) allows an authorized attacker to elevate privileges ...	N/A	N/A	May 21, 2026	MSCVE
NONE	MS:CVE-2026-26147	Azure Stack HCI Information Disclosure Vulnerability_MS:CVE-2026-26147 Improper input validation in Azure Compute Gallery allows an authorized attacker to disclose information over a network.	N/A	N/A	May 21, 2026	MSCVE
NONE	MS:CVE-2026-45659	Microsoft SharePoint Remote Code Execution Vulnerability_MS:CVE-2026-45659 Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.	N/A	N/A	May 21, 2026	MSCVE
NONE	MS:CVE-2026-40412	Azure Orbital Spatio Remote Code Execution Vulnerability_MS:CVE-2026-40412 Unrestricted upload of file with dangerous type in Azure Orbital Spatio allows an unauthorized attacker to execute code over a network.	N/A	N/A	May 21, 2026	MSCVE