PatchDayAlert
Subscribe →

Patch Tuesday Ops Center

June 2026 Patch Tuesday

Triaged for operators — what to patch, in what order, and what breaks.

Last updated Jun 16, 21:13 UTC Published

PatchDayAlert verdict

Accelerated rollout Move servers and DCs ahead of the normal ring.
211 Triaged CVEs of 811 published
40 Critical Microsoft severity
1 Exploited in wild active exploitation
4 Publicly disclosed PoC or details public
1 KEV listed CISA catalog
0 Known issues breakage tracker
MSRC last checked Jun 16, 21:13 UTC
NVD last checked Jun 16, 21:13 UTC
CISA KEV last checked Jun 16, 21:13 UTC
EPSS last checked Jun 16, 21:13 UTC

Partial source freshness: NVD partial (2 not yet in NVD). Treat affected rows as last-known-good.

Operator call

Move servers and DCs ahead of the normal ring.

One June item is now known-exploited: an Edge V8 memory-corruption bug (CVE-2026-11645) added to CISA's KEV list. Browser auto-update already covers it, so confirm your Edge channel version and move on. It does not change the shape of the month. The work that matters is still the unauthenticated network RCEs in the cumulative, the DHCP client, HTTP.sys, and the Windows kernel, which is why servers and internet-facing systems go ahead of the normal ring. Four flaws shipped with details already public, including an HTTP/2 denial of service, a BitLocker bypass, and a Defender elevation of privilege, so watch those for exploit code. Edge inherited 492 Chromium fixes this month; auto-update covers those too.

Why this verdict

  • 01 Unauthenticated deserialization RCE, CVSS 9.8, common in healthcare imaging environments.
  • 02 Unauthenticated RCE in the DHCP client service, which runs on effectively every Windows host.
  • 03 Network-reachable use-after-free in the Windows kernel. RCE at kernel level on Server 2022.

What to patch first

Priority queue

The highest-priority items this cycle, with the operator action for each. Work top to bottom; everything else can ride the triaged table below.

Action
CVE / KB
Product
Why it matters
Operator action
Source
Patch now
CVE-2026-26142
Nuance PowerScribe 360 version 4.0.5
Unauthenticated deserialization RCE, CVSS 9.8, common in healthcare imaging environments.
Only relevant if you run Nuance PowerScribe 360. Fix ships through the Nuance support portal, not Windows Update.
MSRC ·NVD ·KB
Patch now
CVE-2026-44815 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated RCE in the DHCP client service, which runs on effectively every Windows host.
Deploy the June cumulative; no separate fix.
MSRC ·NVD ·KB
Patch now
CVE-2026-45657 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Network-reachable use-after-free in the Windows kernel. RCE at kernel level on Server 2022.
Deploy the June cumulative to server SKUs ahead of the normal ring.
MSRC ·NVD ·KB
Patch now
CVE-2026-47291 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated RCE in the kernel-mode web listener. The classic wormable profile, no exploitation seen yet.
Deploy the June cumulative. Internet-facing IIS and anything else on HTTP.sys goes first.
MSRC ·NVD ·KB
Patch now
CVE-2026-42904 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Unauthenticated adjacent-network elevation of privilege in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 5 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-47281
Visual Studio Code
Unauthenticated network elevation of privilege in Visual Studio Code.
VS Code self-updates; confirm version on developer endpoints where auto-update is disabled.
MSRC ·NVD ·KB
Patch now
CVE-2025-10263 KB5095051 · KB5094127 · KB5094126 · KB5093998
Windows 11 Version 26H1 for ARM64-based Systems
ARM64 Windows devices only. The 2025 ID comes from the upstream ARM advisory.
Deploy this month's cumulative update (KB5095051 plus 3 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-34182
azl3 cloud-hypervisor 51.1.56-1 on Azure Linux 3.0
Unauthenticated network vulnerability in azl3 cloud-hypervisor 51.1.56-1 on Azure Linux 3.0.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD
Patch now
CVE-2026-45602 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated network tampering in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-42985 +10 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows App Client for Windows Desktop
Unauthenticated network remote code execution in Windows App Client for Windows Desktop.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45484 KB5002880 · KB5002874 · KB5002873
Microsoft SharePoint Enterprise Server 2016
Authenticated network elevation of privilege in Microsoft SharePoint Enterprise Server 2016.
Deploy this month's cumulative update (KB5002880 plus 2 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45504 KB5094139 · KB5094140 · KB5094144 · KB5094142
Microsoft Exchange Server Subscription Edition RTM
Authenticated network elevation of privilege in Microsoft Exchange Server Subscription Edition RTM.
Deploy this month's cumulative update (KB5094139 plus 3 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45648 KB5094128 · KB5094125
Windows Server 2022
Authenticated network remote code execution in Windows Server 2022.
Deploy KB5094128, KB5094125.
MSRC ·NVD ·KB
Patch now
CVE-2026-44810 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Unauthenticated local elevation of privilege in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 4 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45456 +2 more in this family KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002873 · KB5002879
Microsoft Office 365 for Mac
Unauthenticated local remote code execution in Microsoft Office 365 for Mac.
Deploy this month's cumulative update (KB5002880 plus 5 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45461 +7 more in this family KB5002878
Microsoft Office for Android
Unauthenticated local remote code execution in Microsoft Office for Android.
Deploy KB5002878.
MSRC ·NVD ·KB
Patch now
CVE-2026-45607 +2 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122
Windows 10 Version 1809 for x64-based Systems
Unauthenticated local remote code execution in Windows 10 Version 1809 for x64-based Systems.
Deploy this month's cumulative update (KB5094123 plus 7 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-42974 +1 more in this family KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Unauthenticated network remote code execution in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 4 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-42987 KB5094123 · KB5094128 · KB5094125 · KB5094122 · KB5094042 · KB5094041
Windows Server 2019
Unauthenticated network remote code execution in Windows Server 2019.
Deploy this month's cumulative update (KB5094123 plus 5 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45599 +1 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-33828 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 7 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-44803 +1 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated local remote code execution in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45586 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Details were public before the patch. Local privilege escalation, so it matters after a foothold, not before.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-48574 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated local remote code execution in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45583 KB5094144 · KB5094142 · KB5094140 · KB5094139
Microsoft Exchange Server 2016 Cumulative Update 23
Unauthenticated network remote code execution in Microsoft Exchange Server 2016 Cumulative Update 23.
Deploy this month's cumulative update (KB5094144 plus 3 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-49160 KB5094123 · KB5094127 · KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122
Windows Server 2019 (Server Core installation)
Publicly disclosed HTTP/2 denial of service against HTTP.sys. Internet-facing IIS is the audience.
Deploy this month's cumulative update (KB5094123 plus 7 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-47288 KB5094123 · KB5094128 · KB5094125 · KB5094122 · KB5094042 · KB5094041
Windows Server 2019
Authenticated adjacent-network remote code execution in Windows Server 2019.
Deploy this month's cumulative update (KB5094123 plus 5 more KBs).
MSRC ·NVD ·KB
Patch now
CVE-2026-45454 KB5002880 · KB5002874 · KB5002873
Microsoft SharePoint Enterprise Server 2016
Authenticated network remote code execution in Microsoft SharePoint Enterprise Server 2016.
Deploy this month's cumulative update (KB5002880 plus 2 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-40371
Microsoft Dynamics 365 (on-premises) version 9.1
Authenticated network elevation of privilege in Microsoft Dynamics 365 (on-premises) version 9.1.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD ·KB
Patch this week
CVE-2026-44822 KB5002875 · KB5002877
Microsoft Office 365 for Mac
Unauthenticated network information disclosure in Microsoft Office 365 for Mac.
Deploy KB5002875, KB5002877.
MSRC ·NVD ·KB
Patch this week
CVE-2026-45503 +1 more in this family KB5094144 · KB5094139 · KB5094140 · KB5094142
Microsoft Exchange Server 2016 Cumulative Update 23
Authenticated network information disclosure in Microsoft Exchange Server 2016 Cumulative Update 23.
Deploy this month's cumulative update (KB5094144 plus 3 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-47631 +2 more in this family KB5094144 · KB5094142 · KB5094140 · KB5094139
Microsoft Exchange Server 2016 Cumulative Update 23
Unauthenticated network spoofing in Microsoft Exchange Server 2016 Cumulative Update 23.
Deploy this month's cumulative update (KB5094144 plus 3 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45644
Microsoft Live Share Canvas SDK
Authenticated network elevation of privilege in Microsoft Live Share Canvas SDK.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD ·KB
Patch this week
CVE-2026-47298 KB5002880 · KB5002874 · KB5002873
Microsoft SharePoint Enterprise Server 2016
Authenticated network remote code execution in Microsoft SharePoint Enterprise Server 2016.
Deploy this month's cumulative update (KB5002880 plus 2 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-48578 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-40404 +1 more in this family KB5094128 · KB5094127 · KB5094123 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows Server 2022 (Server Core installation)
Authenticated local elevation of privilege in Windows Server 2022 (Server Core installation).
Deploy this month's cumulative update (KB5094128 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-41092 KB5095051 · KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5094122 · KB5094042 · KB5094041
Windows 11 Version 26H1 for ARM64-based Systems
Authenticated local elevation of privilege in Windows 11 Version 26H1 for ARM64-based Systems.
Deploy this month's cumulative update (KB5095051 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42828 +1 more in this family KB5094128 · KB5094123 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Authenticated local elevation of privilege in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 6 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42905 +7 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42910 KB5094125 · KB5094126 · KB5095051
Windows Server 2025 (Server Core installation)
Authenticated local elevation of privilege in Windows Server 2025 (Server Core installation).
Deploy this month's cumulative update (KB5094125 plus 2 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42916 +1 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42977 +3 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 6 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42986 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42989 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-44809 KB5094125 · KB5094126 · KB5095051
Windows Server 2025 (Server Core installation)
Authenticated local elevation of privilege in Windows Server 2025 (Server Core installation).
Deploy this month's cumulative update (KB5094125 plus 2 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-44817 +4 more in this family KB5002875 · KB5002877
Microsoft Office 365 for Mac
Unauthenticated local remote code execution in Microsoft Office 365 for Mac.
Deploy KB5002875, KB5002877.
MSRC ·NVD ·KB
Patch this week
CVE-2026-45457 +3 more in this family
Microsoft Office 365 for Mac
Unauthenticated local remote code execution in Microsoft Office 365 for Mac.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD
Patch this week
CVE-2026-45487 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Authenticated local elevation of privilege in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 5 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45592 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041 · KB5094006
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45593 KB5095051 · KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998
Windows 11 Version 26H1 for ARM64-based Systems
Authenticated local elevation of privilege in Windows 11 Version 26H1 for ARM64-based Systems.
Deploy this month's cumulative update (KB5095051 plus 6 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45600 KB5094125 · KB5094126 · KB5095051
Windows Server 2025 (Server Core installation)
Authenticated local elevation of privilege in Windows Server 2025 (Server Core installation).
Deploy this month's cumulative update (KB5094125 plus 2 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45605 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 7 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45636 KB5094128 · KB5094123 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041 · KB5094042
Windows Server 2022 (Server Core installation)
Unauthenticated local remote code execution in Windows Server 2022 (Server Core installation).
Deploy this month's cumulative update (KB5094128 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45637 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 6 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45638 +6 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-48583 +2 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 7 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-50656
Microsoft Malware Protection Engine
Authenticated local elevation of privilege in Microsoft Malware Protection Engine. Exploit details are already public.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD
Patch this week
CVE-2026-40376
Visual Studio Code
Unauthenticated network elevation of privilege in Visual Studio Code.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD ·KB
Patch this week
CVE-2026-42908 +1 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated network information disclosure in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45591 KB5097148 · KB5097149 · KB5097150
Microsoft Visual Studio 2026 version 18.6
Unauthenticated network denial of service in Microsoft Visual Studio 2026 version 18.6.
Deploy this month's cumulative update (KB5097148 plus 2 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45481 +17 more in this family KB5002880 · KB5002874 · KB5002873
Microsoft SharePoint Enterprise Server 2016
Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016.
Deploy this month's cumulative update (KB5002880 plus 2 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-41108 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42836 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42912 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45597 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Authenticated local elevation of privilege in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 4 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45640 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows Server 2022
Authenticated local elevation of privilege in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 5 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-47293
Microsoft Office 2019 for 32-bit editions
Authenticated local elevation of privilege in Microsoft Office 2019 for 32-bit editions.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD
Patch this week
CVE-2026-47648 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-50507 KB5094123 · KB5094128 · KB5094127 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Publicly disclosed BitLocker bypass, but it requires physical access. Patch with the ring, no need to accelerate.
Deploy this month's cumulative update (KB5094123 plus 7 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42903 +1 more in this family KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Authenticated network denial of service in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 9 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-42907 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051
Windows 10 Version 1809 for 32-bit Systems
Authenticated network information disclosure in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 6 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-47655
Microsoft Graph
Authenticated network information disclosure in Microsoft Graph.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD
Patch this week
CVE-2026-50508 KB5094128 · KB5094127 · KB5093998 · KB5094122 · KB5094042 · KB5094041
Windows Server 2022
Unauthenticated network spoofing in Windows Server 2022.
Deploy this month's cumulative update (KB5094128 plus 5 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45595 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041
Windows 10 Version 1809 for 32-bit Systems
Unauthenticated network security feature bypass in Windows 10 Version 1809 for 32-bit Systems.
Deploy this month's cumulative update (KB5094123 plus 8 more KBs).
MSRC ·NVD ·KB
Patch this week
CVE-2026-45460
Microsoft Office for Android
Unauthenticated local information disclosure in Microsoft Office for Android.
No Microsoft KB; remediate via the vendor's advisory.
MSRC ·NVD
Patch this week
CVE-2026-45483 KB5002873 · KB5002880 · KB5002874
Microsoft SharePoint Server Subscription Edition
Authenticated network spoofing in Microsoft SharePoint Server Subscription Edition.
Deploy this month's cumulative update (KB5002873 plus 2 more KBs).
MSRC ·NVD ·KB

Copy this cycle's operator brief

Accelerated rollout — 48 patch-now items, 0 known issues to watch before broad deployment.

Read full brief ↓

Before you deploy broadly

Known issues and operator reports

Breakage we are tracking this cycle — confirmed by Microsoft, reported by operators, or still being watched. Check this before any broad rollout.

No known issues tracked for this cycle yet.

For Teams, Slack, a ticket, or a CAB note

Copyable operator brief

June 2026 Patch Tuesday · plain-text brief

The triaged shortlist

Triaged Patch Tuesday table

Not the full release — this is the operator-relevant shortlist we triaged from this month's CVEs. Search or filter to your stack; for the complete list, follow the MSRC source links.

CVEKBProductSeverity CVSSEPSS ExplPubKEV PatchDay actionNotesSource
CVE-2026-41108 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45467 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45468 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45469 KB5002875 · KB5002877 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45475 KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002873 · KB5002878 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45472 KB5002878 Microsoft Office 2019 for 32-bit editions Critical 8.4 0% Patch now Unauthenticated local remote code execution in Microsoft Office 2019 for 32-bit editions. MSRC ·NVD ·KB
CVE-2026-45471 KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002873 · KB5002879 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45474 KB5002878 Microsoft Office 365 for Mac Critical 8.4 0% Patch now Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45479 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45486 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD
CVE-2026-45485 KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002873 · KB5002878 Microsoft Office 365 for Mac Important 3.3 0% Track Unauthenticated local information disclosure in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45483 KB5002873 · KB5002880 · KB5002874 Microsoft SharePoint Server Subscription Edition Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Server Subscription Edition. MSRC ·NVD ·KB
CVE-2026-47644 Copilot Chat (Microsoft Edge) Critical 6.5 1% No action needed Unauthenticated network information disclosure in Copilot Chat (Microsoft Edge). MSRC ·NVD
CVE-2026-47655 Microsoft Graph Critical 6.5 1% Patch this week Authenticated network information disclosure in Microsoft Graph. MSRC ·NVD
CVE-2025-10263 KB5095051 · KB5094127 · KB5094126 · KB5093998 Windows 11 Version 26H1 for ARM64-based Systems Critical 9.3 0% Patch now ARM64 Windows devices only. The 2025 ID comes from the upstream ARM advisory. MSRC ·NVD ·KB
CVE-2026-40409 KB5094123 · KB5094128 · KB5094127 · KB5094126 · KB5094125 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-40404 KB5094128 · KB5094127 · KB5094123 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows Server 2022 (Server Core installation) Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows Server 2022 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-33828 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Critical 7.8 0% Patch now Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-34335 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42902 Microsoft PowerToys Important 7.8 0% Track Authenticated local elevation of privilege in Microsoft PowerToys. MSRC ·NVD ·KB
CVE-2026-44817 KB5002875 · KB5002877 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-44818 KB5002875 · KB5002877 Microsoft Office 365 for Mac Important 7.0 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-44819 KB5002880 · KB5002881 · KB5002873 · KB5002874 · KB5002876 · KB5002878 Microsoft SharePoint Enterprise Server 2016 Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-44820 KB5002875 · KB5002877 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-44821 KB5002873 · KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002878 Microsoft SharePoint Server Subscription Edition Important 5.5 0% Track Unauthenticated local information disclosure in Microsoft SharePoint Server Subscription Edition. MSRC ·NVD ·KB
CVE-2026-44823 KB5002875 · KB5002877 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-44824 KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002873 · KB5002878 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45453 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 5.4 0% Patch this week Unauthenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45456 KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002873 · KB5002879 Microsoft Office 365 for Mac Critical 8.4 0% Patch now Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45458 KB5002880 · KB5002881 · KB5002874 · KB5002876 · KB5002873 · KB5002879 Microsoft Office 365 for Mac Critical 8.4 0% Patch now Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45460 Microsoft Office for Android Critical 4.7 0% Patch this week Unauthenticated local information disclosure in Microsoft Office for Android. MSRC ·NVD
CVE-2026-45461 KB5002878 Microsoft Office for Android Critical 8.4 0% Patch now Unauthenticated local remote code execution in Microsoft Office for Android. MSRC ·NVD ·KB
CVE-2026-45466 Microsoft 365 Apps for Enterprise for 32-bit Systems Important 3.3 0% Track Unauthenticated local information disclosure in Microsoft 365 Apps for Enterprise for 32-bit Systems. MSRC ·NVD
CVE-2026-45487 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-45490 KB5097148 · KB5097149 · KB5097150 .NET 10.0 installed on Windows Important 7.8 0% Track Authenticated local elevation of privilege in .NET 10.0 installed on Windows. MSRC ·NVD ·KB
CVE-2026-45491 KB5097148 · KB5097149 · KB5097150 .NET 10.0 installed on Windows Important 6.2 0% Track Unauthenticated local tampering in .NET 10.0 installed on Windows. MSRC ·NVD ·KB
CVE-2026-45500 KB5094142 · KB5094139 · KB5094140 · KB5094144 Microsoft Exchange Server 2019 Cumulative Update 14 Important 6.1 0% Patch this week Unauthenticated network spoofing in Microsoft Exchange Server 2019 Cumulative Update 14. MSRC ·NVD ·KB
CVE-2026-45501 KB5094139 · KB5094144 · KB5094140 · KB5094142 Microsoft Exchange Server Subscription Edition RTM Important 6.5 0% Patch this week Authenticated network spoofing in Microsoft Exchange Server Subscription Edition RTM. MSRC ·NVD ·KB
CVE-2026-45502 KB5094142 · KB5094140 · KB5094144 · KB5094139 Microsoft Exchange Server 2019 Cumulative Update 14 Important 5.0 0% Patch this week Authenticated network information disclosure in Microsoft Exchange Server 2019 Cumulative Update 14. MSRC ·NVD ·KB
CVE-2026-45503 KB5094144 · KB5094139 · KB5094140 · KB5094142 Microsoft Exchange Server 2016 Cumulative Update 23 Important 8.1 0% Patch this week Authenticated network information disclosure in Microsoft Exchange Server 2016 Cumulative Update 23. MSRC ·NVD ·KB
CVE-2026-45504 KB5094139 · KB5094140 · KB5094144 · KB5094142 Microsoft Exchange Server Subscription Edition RTM Important 8.8 0% Patch now Authenticated network elevation of privilege in Microsoft Exchange Server Subscription Edition RTM. MSRC ·NVD ·KB
CVE-2026-45583 KB5094144 · KB5094142 · KB5094140 · KB5094139 Microsoft Exchange Server 2016 Cumulative Update 23 Important 7.5 0% Patch now Unauthenticated network remote code execution in Microsoft Exchange Server 2016 Cumulative Update 23. MSRC ·NVD ·KB
CVE-2026-45605 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45639 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows App Client for Windows Desktop Important 7.5 1% Patch this week Unauthenticated network information disclosure in Windows App Client for Windows Desktop. MSRC ·NVD ·KB
CVE-2026-45640 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-45606 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local denial of service in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45607 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for x64-based Systems Critical 8.4 0% Patch now Unauthenticated local remote code execution in Windows 10 Version 1809 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-45641 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Critical 8.4 0% Patch now Unauthenticated local remote code execution in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-45634 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45642 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 3.9 0% Track Authenticated physical spoofing in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45643 Microsoft 365 Apps for Enterprise for 32-bit Systems Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft 365 Apps for Enterprise for 32-bit Systems. MSRC ·NVD
CVE-2026-45645 KB5002852 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45648 KB5094128 · KB5094125 Windows Server 2022 Critical 8.8 1% Patch now Authenticated network remote code execution in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-45649 Microsoft Excel for Android Important 7.1 0% Track Unauthenticated local spoofing in Microsoft Excel for Android. MSRC ·NVD
CVE-2026-45650 Microsoft Bing Search for Android Important 4.3 0% Track Unauthenticated network spoofing in Microsoft Bing Search for Android. MSRC ·NVD ·KB
CVE-2026-45655 KB5095051 · KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5094122 · KB5094042 · KB5094041 Windows 11 Version 26H1 for ARM64-based Systems Important 5.3 0% Track Unauthenticated physical security feature bypass in Windows 11 Version 26H1 for ARM64-based Systems. MSRC ·NVD ·KB
CVE-2026-45656 KB5095051 · KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5094122 · KB5094042 · KB5094041 Windows 11 Version 26H1 for ARM64-based Systems Important 7.8 0% Track Authenticated local security feature bypass in Windows 11 Version 26H1 for ARM64-based Systems. MSRC ·NVD ·KB
CVE-2026-45657 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Critical 9.8 1% Patch now Network-reachable use-after-free in the Windows kernel. RCE at kernel level on Server 2022. MSRC ·NVD ·KB
CVE-2026-47287 Visual Studio Code Important 6.5 1% Track Unauthenticated network tampering in Visual Studio Code. MSRC ·NVD ·KB
CVE-2026-47288 KB5094123 · KB5094128 · KB5094125 · KB5094122 · KB5094042 · KB5094041 Windows Server 2019 Critical 7.1 0% Patch now Authenticated adjacent-network remote code execution in Windows Server 2019. MSRC ·NVD ·KB
CVE-2026-47289 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 8.8 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-47291 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 9.8 4% Patch now Unauthenticated RCE in the kernel-mode web listener. The classic wormable profile, no exploitation seen yet. MSRC ·NVD ·KB
CVE-2026-47292 Visual Studio Code - MSSQL Extension Important 7.8 0% Track Unauthenticated local elevation of privilege in Visual Studio Code - MSSQL Extension. MSRC ·NVD ·KB
CVE-2026-41092 KB5095051 · KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5094122 · KB5094042 · KB5094041 Windows 11 Version 26H1 for ARM64-based Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 11 Version 26H1 for ARM64-based Systems. MSRC ·NVD ·KB
CVE-2026-32193 Azure Kubernetes Service Critical 8.8 0% No action needed Authenticated local remote code execution in Azure Kubernetes Service. MSRC ·NVD ·KB
CVE-2026-47298 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 8.0 0% Patch this week Authenticated network remote code execution in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-47631 KB5094144 · KB5094142 · KB5094140 · KB5094139 Microsoft Exchange Server 2016 Cumulative Update 23 Important 8.1 0% Patch this week Unauthenticated network spoofing in Microsoft Exchange Server 2016 Cumulative Update 23. MSRC ·NVD ·KB
CVE-2026-41098 Azure Stack Edge Important 8.4 1% No action needed Authenticated network spoofing in Azure Stack Edge. MSRC ·NVD ·KB
CVE-2026-47635 Microsoft Office LTSC 2024 for 32-bit editions Critical 8.4 0% Patch now Unauthenticated local remote code execution in Microsoft Office LTSC 2024 for 32-bit editions. MSRC ·NVD
CVE-2026-47636 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 5.4 0% Patch this week Unauthenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-47637 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-47638 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-47639 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 5.4 0% Patch this week Unauthenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-47641 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45588 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.9 0% Track Authenticated local security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-47648 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-8863 KB5094123 · KB5094128 · KB5094127 · KB5094126 · KB5094125 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows Server 2019 Important 7.8 0% Track Authenticated local security feature bypass in Windows Server 2019. MSRC ·NVD ·KB
CVE-2026-47653 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 8.8 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-47652 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Critical 8.2 0% Patch now Authenticated local remote code execution in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-47654 KB5094123 · KB5094128 · KB5094125 · KB5094122 Windows Server 2019 Critical 7.5 0% Patch now Unauthenticated network remote code execution in Windows Server 2019. MSRC ·NVD ·KB
CVE-2026-48563 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Critical 7.5 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-48566 KB5087539 · KB5087423 · KB5089549 · KB5089466 · KB5089548 Windows Server 2025 (Server Core installation) Important 5.5 0% Track Authenticated local information disclosure in Windows Server 2025 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-48568 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.9 0% Track Authenticated local security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-48570 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.9 0% Track Authenticated local security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-48573 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.9 1% Track Authenticated local security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-48575 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.9 0% Track Authenticated local security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-48576 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.9 1% Track Authenticated local security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-48578 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.9 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-48583 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-49161 Microsoft PC Manager Important 7.8 0% Track Authenticated local security feature bypass in Microsoft PC Manager. MSRC ·NVD ·KB
CVE-2026-50508 KB5094128 · KB5094127 · KB5093998 · KB5094122 · KB5094042 · KB5094041 Windows Server 2022 Important 6.5 0% Patch this week Unauthenticated network spoofing in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-26142 Nuance PowerScribe 360 version 4.0.5 Critical 9.8 1% Patch now Unauthenticated deserialization RCE, CVSS 9.8, common in healthcare imaging environments. MSRC ·NVD ·KB
CVE-2026-11645 Microsoft Edge (Chromium-based) 8.8 1% YES YES No action needed Unauthenticated network vulnerability in Microsoft Edge (Chromium-based). Actively exploited in the wild. MSRC ·NVD ·CISA KEV
CVE-2026-33113 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 5.4 0% Patch this week Unauthenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-40371 Microsoft Dynamics 365 (on-premises) version 9.1 Important 8.8 1% Patch this week Authenticated network elevation of privilege in Microsoft Dynamics 365 (on-premises) version 9.1. MSRC ·NVD ·KB
CVE-2026-42828 KB5094128 · KB5094123 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-42829 KB5094126 · KB5095051 Windows 11 Version 25H2 for ARM64-based Systems Important 7.8 0% Track Authenticated local security feature bypass in Windows 11 Version 25H2 for ARM64-based Systems. MSRC ·NVD ·KB
CVE-2026-42835 Microsoft Teams for Android Important 8.1 1% Track Authenticated network information disclosure in Microsoft Teams for Android. MSRC ·NVD ·KB
CVE-2026-40376 Visual Studio Code Important 7.5 1% Patch this week Unauthenticated network elevation of privilege in Visual Studio Code. MSRC ·NVD ·KB
CVE-2026-44822 KB5002875 · KB5002877 Microsoft Office 365 for Mac Important 8.2 0% Patch this week Unauthenticated network information disclosure in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45454 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 6.5 1% Patch now Authenticated network remote code execution in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45455 KB5002875 · KB5002877 Office Online Server Important 3.3 0% Track Unauthenticated local information disclosure in Office Online Server. MSRC ·NVD ·KB
CVE-2026-45457 Microsoft Office 365 for Mac Important 7.8 0% Patch this week Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD
CVE-2026-45459 Microsoft 365 Apps for Enterprise for 32-bit Systems Important 3.3 0% Track Unauthenticated local security feature bypass in Microsoft 365 Apps for Enterprise for 32-bit Systems. MSRC ·NVD
CVE-2026-45462 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45463 KB5002878 Microsoft Office 365 for Mac Critical 8.4 0% Patch now Unauthenticated local remote code execution in Microsoft Office 365 for Mac. MSRC ·NVD ·KB
CVE-2026-45464 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 5.4 0% Patch this week Unauthenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45465 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 5.4 0% Patch this week Unauthenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45476 Linux kernel - Microsoft MANA Network Driver Critical 8.2 0% No action needed Authenticated local elevation of privilege in Linux kernel - Microsoft MANA Network Driver. MSRC ·NVD ·KB
CVE-2026-45482 Microsoft Visual Studio Code CoPilot Chat Extension Important 8.4 0% No action needed Unauthenticated local security feature bypass in Microsoft Visual Studio Code CoPilot Chat Extension. MSRC ·NVD ·KB
CVE-2026-45586 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 2% YES Patch now Details were public before the patch. Local privilege escalation, so it matters after a foothold, not before. MSRC ·NVD ·KB
CVE-2026-45591 KB5097148 · KB5097149 · KB5097150 Microsoft Visual Studio 2026 version 18.6 Important 7.5 1% Patch this week Unauthenticated network denial of service in Microsoft Visual Studio 2026 version 18.6. MSRC ·NVD ·KB
CVE-2026-45592 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041 · KB5094006 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45593 KB5095051 · KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 Windows 11 Version 26H1 for ARM64-based Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 11 Version 26H1 for ARM64-based Systems. MSRC ·NVD ·KB
CVE-2026-45594 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45604 KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2025 (Server Core installation) Important 5.5 0% Track Authenticated local information disclosure in Windows Server 2025 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-45595 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 5.4 0% Patch this week Unauthenticated network security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45597 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-45599 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 8.1 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45601 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45598 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45636 KB5094128 · KB5094123 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041 · KB5094042 Windows Server 2022 (Server Core installation) Important 7.8 0% Patch this week Unauthenticated local remote code execution in Windows Server 2022 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-45596 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45600 KB5094125 · KB5094126 · KB5095051 Windows Server 2025 (Server Core installation) Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows Server 2025 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-45602 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 9.1 0% Patch now Unauthenticated network tampering in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45635 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 8.1 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45638 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45603 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45637 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45608 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 6.8 0% Track Unauthenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45644 Microsoft Live Share Canvas SDK Important 8.0 0% Patch this week Authenticated network elevation of privilege in Microsoft Live Share Canvas SDK. MSRC ·NVD ·KB
CVE-2026-45653 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-45654 KB5095051 · KB5094125 · KB5094126 Windows 11 version 26H1 for x64-based Systems Important 7.9 0% Track Authenticated local security feature bypass in Windows 11 version 26H1 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-45647 Microsoft Defender for Endpoint for Mac Important 5.5 0% Track Authenticated local elevation of privilege in Microsoft Defender for Endpoint for Mac. MSRC ·NVD
CVE-2026-45658 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Track Authenticated local security feature bypass in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-47281 Visual Studio Code Important 9.6 0% Patch now Unauthenticated network elevation of privilege in Visual Studio Code. MSRC ·NVD ·KB
CVE-2026-47284 Visual Studio Code Important 6.5 1% Track Unauthenticated network information disclosure in Visual Studio Code. MSRC ·NVD ·KB
CVE-2026-47293 Microsoft Office 2019 for 32-bit editions Important 7.0 0% Patch this week Authenticated local elevation of privilege in Microsoft Office 2019 for 32-bit editions. MSRC ·NVD
CVE-2026-42910 KB5094125 · KB5094126 · KB5095051 Windows Server 2025 (Server Core installation) Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows Server 2025 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-47634 KB5002874 · KB5002873 Microsoft SharePoint Server 2019 Important 7.3 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Server 2019. MSRC ·NVD ·KB
CVE-2026-47640 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-47643 Azure Stack Edge Important 9.8 1% No action needed Unauthenticated network remote code execution in Azure Stack Edge. MSRC ·NVD ·KB
CVE-2026-45481 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 7.3 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-45484 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 8.8 1% Patch now Authenticated network elevation of privilege in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-47656 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows Server 2019 Important 7.9 0% Track Authenticated local security feature bypass in Windows Server 2019. MSRC ·NVD ·KB
CVE-2026-48560 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 5.4 1% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-48562 KB5002880 · KB5002874 · KB5002873 Microsoft SharePoint Enterprise Server 2016 Important 4.6 0% Patch this week Authenticated network spoofing in Microsoft SharePoint Enterprise Server 2016. MSRC ·NVD ·KB
CVE-2026-48565 Windows Narrator Braille Important 7.8 0% Track Authenticated local elevation of privilege in Windows Narrator Braille. MSRC ·NVD
CVE-2026-48569 Visual Studio Code Important 7.1 0% Track Unauthenticated local security feature bypass in Visual Studio Code. MSRC ·NVD ·KB
CVE-2026-48574 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 7.8 0% Patch now Unauthenticated local remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-49160 KB5094123 · KB5094127 · KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows Server 2019 (Server Core installation) Important 7.5 1% YES Patch now Publicly disclosed HTTP/2 denial of service against HTTP.sys. Internet-facing IIS is the audience. MSRC ·NVD ·KB
CVE-2026-50507 KB5094123 · KB5094128 · KB5094127 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 6.8 0% YES Patch this week Publicly disclosed BitLocker bypass, but it requires physical access. Patch with the ring, no need to accelerate. MSRC ·NVD ·KB
CVE-2026-50511 Microsoft PC Manager Important 7.8 0% Track Authenticated local elevation of privilege in Microsoft PC Manager. MSRC ·NVD ·KB
CVE-2026-50512 Microsoft PC Manager Important 7.8 0% Track Authenticated local elevation of privilege in Microsoft PC Manager. MSRC ·NVD ·KB
CVE-2026-42836 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42837 KB5094123 · KB5094127 · KB5094128 · KB5094126 · KB5094125 · KB5093998 · KB5095051 Windows Server 2019 (Server Core installation) Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows Server 2019 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-42903 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 6.5 1% Patch this week Authenticated network denial of service in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42904 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 9.6 0% Patch now Unauthenticated adjacent-network elevation of privilege in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-42905 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 2% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42906 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 5.5 0% Track Authenticated local information disclosure in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-42907 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 6.5 1% Patch this week Authenticated network information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42908 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.5 1% Patch this week Unauthenticated network information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42980 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5094122 · KB5094042 · KB5094041 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 3% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42909 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.5 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42916 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42911 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42913 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Remote Desktop client for Windows Desktop Important 7.5 0% Patch now Unauthenticated network remote code execution in Remote Desktop client for Windows Desktop. MSRC ·NVD ·KB
CVE-2026-42912 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42914 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 5.3 1% Patch this week Authenticated network denial of service in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42968 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42972 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5094122 · KB5094042 · KB5094041 · KB5095051 Windows 10 Version 1809 for x64-based Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-42969 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42971 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42970 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42973 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42984 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.0 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42981 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 8.1 1% Patch now Unauthenticated network remote code execution in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-42974 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 8.1 1% Patch now Unauthenticated network remote code execution in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-42986 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 2% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42978 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42977 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42979 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42991 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42989 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Important 7.8 3% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-44809 KB5094125 · KB5094126 · KB5095051 Windows Server 2025 (Server Core installation) Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows Server 2025 (Server Core installation). MSRC ·NVD ·KB
CVE-2026-44810 KB5094128 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Critical 8.4 0% Patch now Unauthenticated local elevation of privilege in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-42992 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 Windows 10 Version 1809 for 32-bit Systems Critical 7.5 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-44805 KB5094123 · KB5094128 · KB5094125 Windows Server 2019 Important 5.5 0% Track Authenticated local denial of service in Windows Server 2019. MSRC ·NVD ·KB
CVE-2026-44811 KB5095051 Windows 11 version 26H1 for x64-based Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 11 version 26H1 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-44808 KB5095051 Windows 11 version 26H1 for x64-based Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 11 version 26H1 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-44807 KB5095051 Windows 11 version 26H1 for x64-based Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 11 version 26H1 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-44799 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 7.5 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-44815 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 9.8 1% Patch now Unauthenticated RCE in the DHCP client service, which runs on effectively every Windows host. MSRC ·NVD ·KB
CVE-2026-42983 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-44802 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows 10 Version 1809 for 32-bit Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-44814 KB5095051 Windows 11 version 26H1 for x64-based Systems Important 5.5 0% Track Authenticated local information disclosure in Windows 11 version 26H1 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-44801 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 7.5 0% Patch now Unauthenticated network remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42985 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows App Client for Windows Desktop Critical 8.8 0% Patch now Unauthenticated network remote code execution in Windows App Client for Windows Desktop. MSRC ·NVD ·KB
CVE-2026-42987 KB5094123 · KB5094128 · KB5094125 · KB5094122 · KB5094042 · KB5094041 Windows Server 2019 Critical 8.1 0% Patch now Unauthenticated network remote code execution in Windows Server 2019. MSRC ·NVD ·KB
CVE-2026-44803 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 7.8 0% Patch now Unauthenticated local remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-44812 KB5094123 · KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 · KB5094122 · KB5094042 · KB5094041 Windows 10 Version 1809 for 32-bit Systems Critical 7.8 0% Patch now Unauthenticated local remote code execution in Windows 10 Version 1809 for 32-bit Systems. MSRC ·NVD ·KB
CVE-2026-42993 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 7.5 0% Patch now Unauthenticated network remote code execution in Windows Server 2022. MSRC ·NVD ·KB
CVE-2026-44813 KB5095051 Windows 11 version 26H1 for x64-based Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 11 version 26H1 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-44804 KB5095051 Windows 11 version 26H1 for x64-based Systems Important 7.8 0% Patch this week Authenticated local elevation of privilege in Windows 11 version 26H1 for x64-based Systems. MSRC ·NVD ·KB
CVE-2026-45497 Microsoft 365 Copilot Critical 7.7 0% No action needed Authenticated network remote code execution in Microsoft 365 Copilot. MSRC ·NVD
CVE-2026-42824 Microsoft 365 Copilot Critical 6.5 1% No action needed Unauthenticated network information disclosure in Microsoft 365 Copilot. MSRC ·NVD
CVE-2026-48567 Azure HorizonDB Critical 10.0 0% Doesn't apply Azure HorizonDB is a managed service; Microsoft remediates server-side. Listed for transparency, nothing to deploy. MSRC ·NVD
CVE-2026-48579 Microsoft Exchange Online Critical 9.1 1% Doesn't apply Exchange Online is service-side; Microsoft remediates. No operator action. MSRC ·NVD
CVE-2026-34182 azl3 cloud-hypervisor 51.1.56-1 on Azure Linux 3.0 Critical 9.1 0% Patch now Unauthenticated network vulnerability in azl3 cloud-hypervisor 51.1.56-1 on Azure Linux 3.0. MSRC ·NVD
CVE-2026-50656 Microsoft Malware Protection Engine Important 7.8 YES Patch this week Authenticated local elevation of privilege in Microsoft Malware Protection Engine. Exploit details are already public. MSRC ·NVD
CVE-2026-42915 KB5094128 · KB5094127 · KB5094125 · KB5094126 · KB5093998 · KB5095051 Windows Server 2022 Important 5.7 1% Track Authenticated adjacent-network denial of service in Windows Server 2022. MSRC ·NVD ·KB
Showing 211 of 211 triaged CVSS = base score · EPSS = exploit-prediction · KEV = CISA catalog

Consolidated

Edge (Chromium republications) 492 CVEs

Edge inherits these fixes from upstream Chromium. The browser auto-updates; confirm your deployed Edge version is current.

Show all 492 CVE IDs

CVE-2026-10881 · CVE-2026-10882 · CVE-2026-10883 · CVE-2026-10884 · CVE-2026-10886 · CVE-2026-10887 · CVE-2026-10888 · CVE-2026-10889 · CVE-2026-10890 · CVE-2026-10891 · CVE-2026-10892 · CVE-2026-10893 · CVE-2026-10894 · CVE-2026-10895 · CVE-2026-10897 · CVE-2026-10898 · CVE-2026-10899 · CVE-2026-10900 · CVE-2026-10901 · CVE-2026-10902 · CVE-2026-10903 · CVE-2026-10904 · CVE-2026-10905 · CVE-2026-10906 · CVE-2026-10907 · CVE-2026-10908 · CVE-2026-10909 · CVE-2026-10910 · CVE-2026-10911 · CVE-2026-10912 · CVE-2026-10913 · CVE-2026-10914 · CVE-2026-10916 · CVE-2026-10917 · CVE-2026-10918 · CVE-2026-10919 · CVE-2026-10920 · CVE-2026-10921 · CVE-2026-10922 · CVE-2026-10923 · CVE-2026-10924 · CVE-2026-10925 · CVE-2026-10926 · CVE-2026-10927 · CVE-2026-10928 · CVE-2026-10929 · CVE-2026-10930 · CVE-2026-10931 · CVE-2026-10932 · CVE-2026-10933 · CVE-2026-10934 · CVE-2026-10935 · CVE-2026-10936 · CVE-2026-10937 · CVE-2026-10938 · CVE-2026-10939 · CVE-2026-10940 · CVE-2026-10941 · CVE-2026-10942 · CVE-2026-10943 · CVE-2026-10945 · CVE-2026-10946 · CVE-2026-10947 · CVE-2026-10948 · CVE-2026-10949 · CVE-2026-10953 · CVE-2026-10954 · CVE-2026-10955 · CVE-2026-10956 · CVE-2026-10957 · CVE-2026-10959 · CVE-2026-10960 · CVE-2026-10962 · CVE-2026-10963 · CVE-2026-10964 · CVE-2026-10965 · CVE-2026-10966 · CVE-2026-10967 · CVE-2026-10968 · CVE-2026-10969 · CVE-2026-10970 · CVE-2026-10971 · CVE-2026-10972 · CVE-2026-10973 · CVE-2026-10974 · CVE-2026-10975 · CVE-2026-10976 · CVE-2026-10977 · CVE-2026-10978 · CVE-2026-10979 · CVE-2026-10980 · CVE-2026-10981 · CVE-2026-10982 · CVE-2026-10983 · CVE-2026-10984 · CVE-2026-10985 · CVE-2026-10986 · CVE-2026-10987 · CVE-2026-10988 · CVE-2026-10989 · CVE-2026-10990 · CVE-2026-10991 · CVE-2026-10992 · CVE-2026-10993 · CVE-2026-10994 · CVE-2026-10995 · CVE-2026-10996 · CVE-2026-10997 · CVE-2026-10998 · CVE-2026-10999 · CVE-2026-11000 · CVE-2026-11001 · CVE-2026-11002 · CVE-2026-11003 · CVE-2026-11004 · CVE-2026-11005 · CVE-2026-11006 · CVE-2026-11007 · CVE-2026-11008 · CVE-2026-11009 · CVE-2026-11010 · CVE-2026-11011 · CVE-2026-11012 · CVE-2026-11013 · CVE-2026-11014 · CVE-2026-11015 · CVE-2026-11016 · CVE-2026-11017 · CVE-2026-11018 · CVE-2026-11019 · CVE-2026-11020 · CVE-2026-11021 · CVE-2026-11022 · CVE-2026-11023 · CVE-2026-11024 · CVE-2026-11025 · CVE-2026-11026 · CVE-2026-11027 · CVE-2026-11028 · CVE-2026-11029 · CVE-2026-11030 · CVE-2026-11031 · CVE-2026-11032 · CVE-2026-11033 · CVE-2026-11034 · CVE-2026-11035 · CVE-2026-11036 · CVE-2026-11037 · CVE-2026-11038 · CVE-2026-11039 · CVE-2026-11040 · CVE-2026-11041 · CVE-2026-11042 · CVE-2026-11043 · CVE-2026-11044 · CVE-2026-11045 · CVE-2026-11046 · CVE-2026-11047 · CVE-2026-11048 · CVE-2026-11049 · CVE-2026-11050 · CVE-2026-11051 · CVE-2026-11052 · CVE-2026-11053 · CVE-2026-11054 · CVE-2026-11055 · CVE-2026-11056 · CVE-2026-11057 · CVE-2026-11058 · CVE-2026-11059 · CVE-2026-11060 · CVE-2026-11061 · CVE-2026-11062 · CVE-2026-11063 · CVE-2026-11064 · CVE-2026-11065 · CVE-2026-11066 · CVE-2026-11067 · CVE-2026-11068 · CVE-2026-11069 · CVE-2026-11070 · CVE-2026-11071 · CVE-2026-11072 · CVE-2026-11073 · CVE-2026-11074 · CVE-2026-11075 · CVE-2026-11076 · CVE-2026-11077 · CVE-2026-11078 · CVE-2026-11079 · CVE-2026-11080 · CVE-2026-11081 · CVE-2026-11082 · CVE-2026-11083 · CVE-2026-11084 · CVE-2026-11085 · CVE-2026-11086 · CVE-2026-11087 · CVE-2026-11088 · CVE-2026-11089 · CVE-2026-11090 · CVE-2026-11091 · CVE-2026-11092 · CVE-2026-11093 · CVE-2026-11094 · CVE-2026-11095 · CVE-2026-11096 · CVE-2026-11097 · CVE-2026-11098 · CVE-2026-11099 · CVE-2026-11100 · CVE-2026-11101 · CVE-2026-11102 · CVE-2026-11103 · CVE-2026-11104 · CVE-2026-11105 · CVE-2026-11106 · CVE-2026-11107 · CVE-2026-11108 · CVE-2026-11109 · CVE-2026-11110 · CVE-2026-11111 · CVE-2026-11112 · CVE-2026-11113 · CVE-2026-11114 · CVE-2026-11115 · CVE-2026-11116 · CVE-2026-11117 · CVE-2026-11118 · CVE-2026-11119 · CVE-2026-11120 · CVE-2026-11121 · CVE-2026-11122 · CVE-2026-11123 · CVE-2026-11124 · CVE-2026-11125 · CVE-2026-11126 · CVE-2026-11127 · CVE-2026-11128 · CVE-2026-11129 · CVE-2026-11130 · CVE-2026-11131 · CVE-2026-11132 · CVE-2026-11133 · CVE-2026-11134 · CVE-2026-11135 · CVE-2026-11136 · CVE-2026-11137 · CVE-2026-11138 · CVE-2026-11139 · CVE-2026-11140 · CVE-2026-11141 · CVE-2026-11142 · CVE-2026-11143 · CVE-2026-11144 · CVE-2026-11145 · CVE-2026-11146 · CVE-2026-11147 · CVE-2026-11148 · CVE-2026-11149 · CVE-2026-11150 · CVE-2026-11151 · CVE-2026-11152 · CVE-2026-11153 · CVE-2026-11154 · CVE-2026-11155 · CVE-2026-11156 · CVE-2026-11157 · CVE-2026-11158 · CVE-2026-11159 · CVE-2026-11160 · CVE-2026-11161 · CVE-2026-11162 · CVE-2026-11163 · CVE-2026-11164 · CVE-2026-11166 · CVE-2026-11167 · CVE-2026-11168 · CVE-2026-11169 · CVE-2026-11170 · CVE-2026-11171 · CVE-2026-11172 · CVE-2026-11173 · CVE-2026-11174 · CVE-2026-11175 · CVE-2026-11176 · CVE-2026-11177 · CVE-2026-11178 · CVE-2026-11179 · CVE-2026-11180 · CVE-2026-11181 · CVE-2026-11182 · CVE-2026-11184 · CVE-2026-11185 · CVE-2026-11186 · CVE-2026-11187 · CVE-2026-11188 · CVE-2026-11189 · CVE-2026-11190 · CVE-2026-11191 · CVE-2026-11192 · CVE-2026-11193 · CVE-2026-11194 · CVE-2026-11195 · CVE-2026-11196 · CVE-2026-11197 · CVE-2026-11198 · CVE-2026-11199 · CVE-2026-11200 · CVE-2026-11201 · CVE-2026-11203 · CVE-2026-11206 · CVE-2026-11207 · CVE-2026-11208 · CVE-2026-11209 · CVE-2026-11210 · CVE-2026-11211 · CVE-2026-11212 · CVE-2026-11213 · CVE-2026-11215 · CVE-2026-11216 · CVE-2026-11217 · CVE-2026-11218 · CVE-2026-11219 · CVE-2026-11220 · CVE-2026-11221 · CVE-2026-11222 · CVE-2026-11223 · CVE-2026-11224 · CVE-2026-11225 · CVE-2026-11226 · CVE-2026-11227 · CVE-2026-11228 · CVE-2026-11229 · CVE-2026-11230 · CVE-2026-11231 · CVE-2026-11232 · CVE-2026-11233 · CVE-2026-11234 · CVE-2026-11235 · CVE-2026-11236 · CVE-2026-11237 · CVE-2026-11238 · CVE-2026-11239 · CVE-2026-11240 · CVE-2026-11241 · CVE-2026-11242 · CVE-2026-11243 · CVE-2026-11244 · CVE-2026-11245 · CVE-2026-11246 · CVE-2026-11247 · CVE-2026-11248 · CVE-2026-11249 · CVE-2026-11250 · CVE-2026-11251 · CVE-2026-11252 · CVE-2026-11253 · CVE-2026-11254 · CVE-2026-11255 · CVE-2026-11256 · CVE-2026-11257 · CVE-2026-11258 · CVE-2026-11259 · CVE-2026-11260 · CVE-2026-11261 · CVE-2026-11262 · CVE-2026-11263 · CVE-2026-11264 · CVE-2026-11265 · CVE-2026-11266 · CVE-2026-11267 · CVE-2026-11268 · CVE-2026-11269 · CVE-2026-11270 · CVE-2026-11271 · CVE-2026-11273 · CVE-2026-11275 · CVE-2026-11276 · CVE-2026-11278 · CVE-2026-11279 · CVE-2026-11281 · CVE-2026-11282 · CVE-2026-11283 · CVE-2026-11284 · CVE-2026-11286 · CVE-2026-11287 · CVE-2026-11288 · CVE-2026-11289 · CVE-2026-11290 · CVE-2026-11291 · CVE-2026-11292 · CVE-2026-11293 · CVE-2026-11294 · CVE-2026-11295 · CVE-2026-11296 · CVE-2026-11297 · CVE-2026-11299 · CVE-2026-11300 · CVE-2026-11301 · CVE-2026-11303 · CVE-2026-11304 · CVE-2026-11305 · CVE-2026-11306 · CVE-2026-11307 · CVE-2026-11308 · CVE-2026-11309 · CVE-2026-11628 · CVE-2026-11629 · CVE-2026-11630 · CVE-2026-11631 · CVE-2026-11632 · CVE-2026-11633 · CVE-2026-11634 · CVE-2026-11635 · CVE-2026-11636 · CVE-2026-11637 · CVE-2026-11638 · CVE-2026-11639 · CVE-2026-11640 · CVE-2026-11641 · CVE-2026-11642 · CVE-2026-11643 · CVE-2026-11644 · CVE-2026-11646 · CVE-2026-11648 · CVE-2026-11649 · CVE-2026-11650 · CVE-2026-11651 · CVE-2026-11652 · CVE-2026-11653 · CVE-2026-11654 · CVE-2026-11655 · CVE-2026-11656 · CVE-2026-11657 · CVE-2026-11658 · CVE-2026-11659 · CVE-2026-11660 · CVE-2026-11661 · CVE-2026-11662 · CVE-2026-11663 · CVE-2026-11664 · CVE-2026-11665 · CVE-2026-11666 · CVE-2026-11667 · CVE-2026-11668 · CVE-2026-11669 · CVE-2026-11670 · CVE-2026-11671 · CVE-2026-11672 · CVE-2026-11673 · CVE-2026-11674 · CVE-2026-11675 · CVE-2026-11676 · CVE-2026-11677 · CVE-2026-11678 · CVE-2026-11679 · CVE-2026-11680 · CVE-2026-11681 · CVE-2026-11682 · CVE-2026-11683 · CVE-2026-11684 · CVE-2026-11685 · CVE-2026-11686 · CVE-2026-11687 · CVE-2026-11688 · CVE-2026-11689 · CVE-2026-11690 · CVE-2026-11691 · CVE-2026-11692 · CVE-2026-11693 · CVE-2026-11694 · CVE-2026-11695 · CVE-2026-11696 · CVE-2026-11697 · CVE-2026-11698 · CVE-2026-11699 · CVE-2026-11700 · CVE-2026-11701 · CVE-2026-12007 · CVE-2026-12008 · CVE-2026-12009 · CVE-2026-12010 · CVE-2026-12011 · CVE-2026-12012 · CVE-2026-12013 · CVE-2026-12014 · CVE-2026-12015 · CVE-2026-12016 · CVE-2026-12017 · CVE-2026-12018 · CVE-2026-12019

Azure Linux (upstream republications) 108 CVEs

Upstream Linux kernel and package fixes republished for Azure Linux. Relevant only if you run Azure Linux hosts (AKS node pools are the common case); fixes arrive through the distro package feed.

Show all 108 CVE IDs

CVE-2025-71313 · CVE-2025-71315 · CVE-2026-10275 · CVE-2026-10722 · CVE-2026-10846 · CVE-2026-10879 · CVE-2026-11332 · CVE-2026-11463 · CVE-2026-11526 · CVE-2026-11822 · CVE-2026-11824 · CVE-2026-27145 · CVE-2026-29167 · CVE-2026-29170 · CVE-2026-3276 · CVE-2026-34180 · CVE-2026-34181 · CVE-2026-34183 · CVE-2026-34355 · CVE-2026-34356 · CVE-2026-37460 · CVE-2026-40930 · CVE-2026-42504 · CVE-2026-42507 · CVE-2026-42535 · CVE-2026-42536 · CVE-2026-42764 · CVE-2026-42766 · CVE-2026-42767 · CVE-2026-42768 · CVE-2026-42769 · CVE-2026-43951 · CVE-2026-43958 · CVE-2026-44119 · CVE-2026-44185 · CVE-2026-44186 · CVE-2026-44631 · CVE-2026-44705 · CVE-2026-44967 · CVE-2026-45445 · CVE-2026-45446 · CVE-2026-45447 · CVE-2026-46243 · CVE-2026-46244 · CVE-2026-46245 · CVE-2026-46250 · CVE-2026-46252 · CVE-2026-46254 · CVE-2026-46272 · CVE-2026-46273 · CVE-2026-46274 · CVE-2026-46275 · CVE-2026-46280 · CVE-2026-46282 · CVE-2026-46285 · CVE-2026-46287 · CVE-2026-46289 · CVE-2026-46291 · CVE-2026-46292 · CVE-2026-46293 · CVE-2026-46296 · CVE-2026-46299 · CVE-2026-46301 · CVE-2026-46302 · CVE-2026-46303 · CVE-2026-46304 · CVE-2026-46306 · CVE-2026-46307 · CVE-2026-46312 · CVE-2026-46314 · CVE-2026-46319 · CVE-2026-46320 · CVE-2026-46321 · CVE-2026-46322 · CVE-2026-46323 · CVE-2026-46324 · CVE-2026-46325 · CVE-2026-46330 · CVE-2026-46433 · CVE-2026-46643 · CVE-2026-46683 · CVE-2026-47162 · CVE-2026-47167 · CVE-2026-48913 · CVE-2026-49762 · CVE-2026-49975 · CVE-2026-50031 · CVE-2026-50219 · CVE-2026-50256 · CVE-2026-50257 · CVE-2026-50258 · CVE-2026-50259 · CVE-2026-50260 · CVE-2026-50261 · CVE-2026-50262 · CVE-2026-50263 · CVE-2026-50265 · CVE-2026-50292 · CVE-2026-52858 · CVE-2026-52859 · CVE-2026-52860 · CVE-2026-5419 · CVE-2026-54411 · CVE-2026-7383 · CVE-2026-7774 · CVE-2026-8643 · CVE-2026-8829 · CVE-2026-9076

Provenance

Sources and freshness

Every call on this page traces back to a published advisory. Here's when each feed was last checked, and what we read.

Last checked

  • MSRC last checked Jun 16, 21:13 UTC
  • NVD last checked Jun 16, 21:13 UTC · partial
  • CISA KEV last checked Jun 16, 21:13 UTC
  • EPSS last checked Jun 16, 21:13 UTC

Sources monitored

  • MSRC Microsoft Security Update Guide (CVRF) — the spine
  • NVD National Vulnerability Database — CVSS / CWE enrichment
  • CISA KEV Known Exploited Vulnerabilities catalog
  • FIRST EPSS Exploit Prediction Scoring System

A repeatable monthly product

Patch Tuesday archive

June 2026 ● Viewing now Accelerated rollout