Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
Microsoft
CVE-2026-26128 CVSS 7.8
2026-03-10 07:00 UTC · 2026-03-10 04:00 -03
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
https://security-tracker.debian.org/tracker/DSA-6159-1
Package upgrade behavior fix Fixed an issue where upgrading cpanel-csf would overwrite custom csf-cron entries. For a full list of changes, read the ConfigServer Security & Firewall (CSF) change log.
Kamil Frankowicz discovered that a number of YARA's functions generated memory exceptions when processing specially crafted rules or files. A remote attacker could possibly use these issues to cause YARA to crash, resulting in a denial of …