CVE-2026-1703 Limited path traversal when installing wheel archives
Published March 17, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2026-4105 Systemd: systemd: privilege escalation via improper access control in registermachine d-bus method
Published March 17, 2026
Information published.
CVE-2026-2673 OpenSSL TLS 1.3 server may choose unexpected key agreement group
Published March 17, 2026
Information published.
CVE-2026-4111 Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive
Published March 17, 2026
Information published.
CVE-2026-23943 Pre-auth SSH DoS via unbounded zlib inflate
Published March 17, 2026
Information published.
CVE-2026-23942 SFTP root escape via component-agnostic prefix check in ssh_sftpd
Published March 17, 2026
Information published.
CVE-2026-23941 Request smuggling via first-wins Content-Length parsing in inets httpd
Published March 17, 2026
Information published.
CVE-2026-32775
Published March 17, 2026
Information published.
CVE-2026-32777
Published March 17, 2026
Information published.
Chromium: CVE-2026-3936 Use after free in WebView
Published March 14, 2026
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information.
