CVE-2026-2636

CVE-2026-2636 affects the CLFS.sys driver via CWE-159 (Improper Handling of Invalid Use of Special Elements), causing an unrecoverable inconsistency that can trigger KeBugCheckEx and crash the system. Documented impact is Denial of Service/local crash with availability impact HIGH, while confiden...

September Microsoft Patch Tuesday

September Microsoft Patch Tuesday. A total of 103 vulnerabilities, 29 fewer than in August. Of these, 25 vulnerabilities were added between the August and September MSPT. So far, no vulnerabilities are known to be exploited in the wild. Two have public PoC exploits: DoS - Newtonsoft.Json...

Microsoft and Adobe Patch Tuesday, September 2025 Security Update Review

It's the second Tuesday of September, and Microsoft has rolled out its latest security updates. Microsoft's September 2025 Patch Tuesday has arrived, bringing a fresh wave of security fixes to help organizations stay ahead of evolving threats. Here's a quick breakdown of what you need to know...

PT-2025-35654

Name of the Vulnerable Software and Affected Versions Android Runtime affected versions not specified Description The Android Runtime contains a use-after-free vulnerability that allows for escaping the Chrome sandbox to attack the Android system server. Successful exploitation could lead to loca...

Microsoft Plans No Critical Patches for September

Microsoft plans on issuing just five bulletins in the September edition of Patch Tuesday. The patch, set to come out September 14, will address vulnerabilities in Microsoft Windows, Office, and Server Software. With all five bulletins receiving ‘important’ ratings, this marks the first time in mo...