Monthly dashboard

Patch Tuesday Ops Center.

Operator-triaged Microsoft Patch Tuesday: what to patch, in what order, and what breaks. Latest edition: June 2026 Patch Tuesday.

June 2026 June 2026 Patch Tuesday One June item is now known-exploited: an Edge V8 memory-corruption bug (CVE-2026-11645) added to CISA's KEV list. Browser auto-update already covers it, so confirm your Edge channel version and move on. It does not change the shape of the month. The work that matters is still the unauthenticated network RCEs in the cumulative, the DHCP client, HTTP.sys, and the Windows kernel, which is why servers and internet-facing systems go ahead of the normal ring. Four flaws shipped with details already public, including an HTTP/2 denial of service, a BitLocker bypass, and a Defender elevation of privilege, so watch those for exploit code. Edge inherited 492 Chromium fixes this month; auto-update covers those too.

Accelerated rollout 811 triaged · 1 exploited · 0 known issues