For individuals

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.

Uncontrolled search path element in Visual Studio Code allows an authorized attacker to elevate privileges locally.

Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privileges over a network.

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

Substance3D - Designer versions 14.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation...

The unprivileged administrative interface in ABO.CMS version 5.8 through v.5.9.3 is affected by a SQL Injection vulnerability via a HTTP POST request to the TinyMCE module

Incorrect behavior order in some Zoom Workplace Apps for iOS before version 6.3.0 may allow an authenticated user to conduct a denial of service via network access.

Use after free in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.