local privilege escalation

Microsoft's March security roll-up exposed a high-severity elevation-of-privilege flaw in the Azure AD SSH Login extension for Linux that essentially handed local attackers a clear path to root on affected systems, forcing administrators to treat what looks like a convenience feature as a...

Microsoft’s March 10, 2026 security roll‑up added a sharp new item to defenders’ to‑do lists: CVE‑2026‑26134, a Microsoft Office vulnerability described by the vendor as an integer overflow or wraparound that can be leveraged by an authorized local user to achieve elevation of privilege, and...

Microsoft’s security tracking has assigned CVE-2026-25187 to a newly recorded local elevation‑of‑privilege vulnerability in Winlogon that — because Winlogon runs with SYSTEM privileges — presents an immediate and practical escalation path for a local, authorized actor; the vendor-tracked entry...

Microsoft has recorded CVE-2026-25179 as a newly disclosed elevation-of-privilege vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys), and system owners should treat it as an Important local privilege escalation that requires immediate inventorying and patching across...

A new use‑after‑free vulnerability (CVE‑2026‑25178) has been published in Microsoft’s “Ancillary Function Driver for WinSock” (AFD.sys) that allows an authorized local user to elevate privileges, and the vendor has listed the issue in its Security Update Guide. (msrc.microsoft.com) Summary —...

Microsoft has cataloged a new local elevation-of-privilege (EoP) vulnerability in the Windows Extensible File Allocation Table (exFAT) implementation — tracked as CVE-2026-25174 — an out‑of‑bounds read that Microsoft says can allow an authorized local attacker to escalate privileges to a higher...

Microsoft has recorded CVE-2026-25171 as a local elevation-of-privilege (EoP) bug in Windows Authentication Methods — a use‑after‑free in authentication code that, if triggered by an already authorized local actor, can elevate privileges on an affected host; Microsoft’s advisory entry and...

Microsoft’s security trackers and independent feeds today record CVE-2026-25165 as an elevation-of-privilege vulnerability in the Windows Performance Counters subsystem — a null-pointer dereference that, when triggered by an authenticated local user, can be weaponized to escalate to system-level...

Microsoft’s security tracker has recorded CVE-2026-23667 as an elevation-of-privilege vulnerability in the Windows Broadcast DVR component, and early third‑party aggregators describe the flaw as a use‑after‑free that can be abused by a locally authorized attacker to gain higher privileges on...

A logic error in the Android kernel’s mem_protect.c functions can let a local, unprivileged process cause arbitrary code execution in kernel context — giving an attacker a direct elevation to system privileges without any user interaction or extra execution rights. (nvd.nist.gov) Background /...

A high‑severity memory‑safety flaw in Portwell Engineering Toolkits (version 4.8.2) — tracked as CVE‑2026‑3437 — lets a local, authenticated user read and write arbitrary kernel memory through the product’s driver, creating a realistic path to local privilege escalation and denial‑of‑service on...

A privilege‑escalation vulnerability in the QEMU Guest Agent for Windows — tracked as CVE‑2023‑0664 — allows a local, unprivileged user inside a Windows virtual machine to manipulate the QEMU Guest Agent installer’s repair custom actions and obtain SYSTEM privileges inside the guest; the issue...

A critical local privilege‑escalation bug in Ceph’s crash‑handling service — tracked as CVE‑2022‑3650 — lets an attacker with low privileges escalate to root by abusing the cluster crash‑dump path, and operators must treat it as a high‑impact, operational risk until patched. Multiple downstream...

A buffer‑overflow flaw in Intel’s SSD Tools integration with the mdadm utility — tracked as CVE‑2023‑28736 — quietly landed on security lists in August 2023 and remains a textbook case in how a locally‑triggered memory corruption in low‑level storage tooling can produce outsized operational risk...

Microsoft has published an advisory for CVE-2026-21238 — an elevation-of-privilege issue in the Windows Ancillary Function Driver for WinSock (AFD, afd.sys) — and the security community is treating it as a high-priority patch-forcing vulnerability for endpoints and servers that accept local...

Microsoft’s security tracker now shows CVE-2026-21236 as an elevation-of-privilege issue in the Windows Ancillary Function Driver for WinSock (AFD.sys), a kernel‑mode driver that sits at the heart of Windows’ networking stack; the vendor entry and multiple community trackers confirm the CVE but...

A critical local privilege–escalation flaw has been disclosed in Mitsubishi Electric’s UPS shutdown utility, FREQSHIP-mini for Windows (CVE-2025-10314), affecting versions 8.0.0 through 8.0.2 and allowing a low‑privileged local user to gain SYSTEM privileges by replacing service executables or...

Siemens has published an urgent security advisory for TeleControl Server Basic after ProductCERT and national tracking authorities assigned CVE‑2025‑40942 to a local privilege escalation flaw that—if an attacker gains local access—could allow execution of arbitrary code with elevated rights...

Microsoft’s January 2026 security update wave confirmed an elevation-of-privilege vulnerability in the Desktop Window Manager (DWM) component of Windows, tracked as CVE-2026-20871, and the vendor’s advisory attaches a “confidence” metric that explicitly signals how certain Microsoft is about the...

Microsoft’s Security Update Guide lists CVE-2026-20830 as an elevation-of-privilege issue affecting the Capability Access Management Service (camsvc), but the vendor’s public entry is terse and delivered via an interactive, client-side page — meaning defenders must treat the advisory as...