CVE-2026-20928 Windows Recovery Environment Security Feature Bypass Vulnerability

...

CVE-2026-20928

CVE-2026-20928 affects Windows Recovery Environment Agent. Root cause: improper removal of sensitive information before storage/transfer. Impact: allows bypass of a security feature with physical access; confidentiality is impacted. Affected product: Windows Recovery Environment Agent component. ...

CVE-2026-0390

Technical details about CVE-2026-0390 are not publicly provided in the available documents. No information on affected product versions, root cause, exploitability, or remediation is included. Monitor for updates from official sources.

CVE-2026-26175 Windows Boot Manager Security Feature Bypass Vulnerability

...

CVE-2026-26149 Microsoft Power Apps Desktop Client Spoofing Vulnerability

...

CVE-2026-23670

CVE-2026-23670 affects Windows Virtualization-Based Security (VBS) security feature. The issue is a local, high-privilege bypass of VBS protections, with no user interaction required (UI: NONE). Exploitation is possible with local access and may impact confidentiality and integrity (both HIGH), w...

CVE-2026-23670 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

...

CVE-2026-23670 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS in select-organization.ftl - shown on the organization selection login page - since the organization.alias value is inserted into an inline JavaScript onclick handler. A user with manage-realm or...

April 14, 2026-KB5082414 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 1809 and Windows Server 2019

April 14, 2026-KB5082414 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 1809 and Windows Server 2019 Release Date: April 14, 2026 Version: .NET Framework 3.5 and 4.8 The April 14, 2026 update for Windows 10, version 1809 and Windows Server 2019 includes security and...

April 14, 2026-KB5082425 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows Server 2022

April 14, 2026-KB5082425 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows Server 2022 Release Date: April 14, 2026 Version: .NET Framework 3.5 and 4.8.1 The April 14, 2026 update for Windows Server 2022 includes security and cumulative reliability improvements in .NET Framework 3.5...

April 14, 2026-KB5082411 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016

April 14, 2026-KB5082411 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016 Release Date: April 14, 2026 Version: .NET Framework 4.8 The April 14, 2026 update for Windows 10, version 1607 and Windows Server 2016 includes security and cumulative reliabili...

April 14, 2026-KB5082424 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11, version 23H2

April 14, 2026-KB5082424 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11, version 23H2 Release Date: April 14, 2026 Version: .NET Framework 3.5 and 4.8.1 The April 14, 2026 update for Windows 11, version 23H2 includes security and cumulative reliability improvements in .NET...

Description of the security update for SharePoint Server 2016: April 14, 2026 (KB5002861)

Description of the security update for SharePoint Server 2016: April 14, 2026 KB5002861 Summary Important: If you're currently running SharePoint Workflow Manager, you must install the SharePoint Workflow Manager KB5002799 to your farm before you install this cumulative update. If you're currentl...

Description of the security update for SharePoint Server 2016 Language Pack: April 14, 2026 (KB5002862)

Description of the security update for SharePoint Server 2016 Language Pack: April 14, 2026 KB5002862 Summary Important: If you're running Microsoft SharePoint Server 2013-type workflows, you must install the August 2025 update for SharePoint Workflow Manager to your farm before you install this...

Windows Boot Manager Security Feature Bypass Vulnerability

Use of uninitialized resource in Windows Boot Manager allows an unauthorized attacker to bypass a security feature with a physical attack...

Microsoft Power Apps Desktop Client Spoofing Vulnerability

Improper neutralization of escape, meta, or control sequences in Microsoft Power Apps allows an authorized attacker to perform spoofing over a network...

Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

Untrusted pointer dereference in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to bypass a security feature locally...

April 14, 2026-KB5082413 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10, version 1809 and Windows Server 2019

April 14, 2026-KB5082413 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10, version 1809 and Windows Server 2019 Release Date: April 14, 2026 Version: .NET Framework 3.5 and 4.7.2 The April 14, 2026 update for Windows 10, version 1809 and Windows Server 2019 includes security and...

Windows Biometric Service Security Feature Bypass Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack...