Description of the security update for Excel 2016: March 10, 2026 (KB5002849)

Description of the security update for Excel 2016: March 10, 2026 KB5002849 Summary This security update resolves Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see the following security advisories: Microsoft Common Vulnerabilities and Exposures...

.NET 10.0 Update - December 9, 2025 (KB5072928)

.NET 10.0 Update - December 9, 2025 KB5072928 .NET 10.0 has been refreshed with the latest update as of December 9, 2025. This update contains non-security fixes. See the release notes for details about updated packages..NET 10.0 servicing updates are upgrades. The latest servicing update for 10....

October 14, 2025-KB5066129 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system, version 23H2

October 14, 2025-KB5066129 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system, version 23H2 Release Date: October 14, 2025 Version: .NET Framework 3.5 and 4.8.1 The October 14, 2025 update for Microsoft server operating system, version 23H2 includes security...

End of support for Office 2016 and Office 2019

None None...

EUVD-2024-43766

Malicious code in bioql PyPI...

KB5055664: Servicing stack update for Windows 10: April 9, 2025

KB5055664: Servicing stack update for Windows 10: April 9, 2025 Support for Windows 10 has ended on October 14, 2025 After October 14, 2025, Microsoft will no longer provide free software updates from Windows Update, technical assistance, or security fixes for Windows 10. Your PC will still work,...

The vulnerability of the Microsoft Update Catalog’s update website, related to deserialization mechanism flaws, allows attackers to escalate their privileges.

The vulnerability in the Microsoft Update Catalog’s update website is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

Description of the security update for SharePoint Server 2019: January 14, 2025 (KB5002666)

Description of the security update for SharePoint Server 2019: January 14, 2025 KB5002666 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability and Microsoft SharePoint Server spoofing vulnerability. To learn more about the vulnerabilities, see th...

Description of the security update for Access 2016: January 14, 2025 (KB5002670)

Description of the security update for Access 2016: January 14, 2025 KB5002670 Summary This security update resolves a Microsoft Access remote code execution vulnerability. To learn more about the vulnerability, see the following security advisories: Microsoft Common Vulnerabilities and Exposures...

Microsoft Update Catalog Deserialization Vulnerability

The Microsoft Update Catalog is an update Web site from the U.S.-based Microsoft Corporation Microsoft. It is used to provide the company with a list of patches, drivers and software. Microsoft Update Catalog suffers from a deserialization vulnerability that originates from deserializing untruste...

CVE-2024-49147

Deserialization of untrusted data in Microsoft Update Catalog allows an unauthorized attacker to elevate privileges on the website’s webserver...

CVE-2024-49147

CVE-2024-49147 affects Microsoft Update Catalog. The vulnerability is described as deserialization of untrusted data that allows an unauthorized attacker to escalate privileges on the site’s web server. Affected component is the Update Catalog service; the underlying issue is deserialization rath...

Microsoft Update Catalog Elevation of Privilege Vulnerability

Deserialization of untrusted data in Microsoft Update Catalog allows an unauthorized attacker to elevate privileges on the website’s webserver...

Microsoft Update Catalog 代码问题漏洞

The Microsoft Update Catalog is an update Web site from the U.S.-based Microsoft Corporation Microsoft. It is used to provide the company with a list of patches, drivers and software. Microsoft Update Catalog suffers from a deserialization vulnerability that originates from deserializing untruste...

PT-2024-9605 · Microsoft · Update Catalog

The affected software is Microsoft Update Catalog, which has a critical issue related to the deserialization of untrusted data. This allows an unauthorized attacker to elevate privileges on the website's webserver. Although no specific versions of the software are mentioned as being affected,...

KB5046861 - Description of the security update for SQL Server 2022 GDR: November 12, 2024

KB5046861 - Description of the security update for SQL Server 2022 GDR: November 12, 2024 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains...

KB5046862 - Description of the security update for SQL Server 2022 CU15: November 12, 2024

KB5046862 - Description of the security update for SQL Server 2022 CU15: November 12, 2024 Summary Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information...

November 12, 2024—Hotpatch KB5046698 (OS Build 20348.2819)

None None...

November 12, 2024—Hotpatch KB5046696 (OS Build 26100.2240)

None None...

Description of the security update for SharePoint Server Subscription Edition: November 12, 2024 (KB5002651)

Description of the security update for SharePoint Server Subscription Edition: November 12, 2024 KB5002651 Summary This security update for SharePoint Server provides defense-in-depth updates to help improve security-related features. To learn more about the updates, see Microsoft Advisory...