General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2026-20851 | Out-of-bounds read in Capability Access Management Service (camsvc) allows an unauthorized attacker to disclose informa… | Medium (6.2) | 2026-01-13 | General-Purpose |
| CVE-2026-20849 | Reliance on untrusted inputs in a security decision in Windows Kerberos allows an authorized attacker to elevate privil… | High (7.5) | 2026-01-13 | General-Purpose |
| CVE-2026-20848 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allow… | High (7.5) | 2026-01-13 | General-Purpose |
| CVE-2026-20847 | Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to perform sp… | Medium (6.5) | 2026-01-13 | General-Purpose |
| CVE-2026-20844 | Use after free in Windows Clipboard Server allows an unauthorized attacker to elevate privileges locally. | High (7.4) | 2026-01-13 | General-Purpose |