KLA91072 Multiple vulnerabilities in Microsoft Apps

Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in M365 Copilot can be exploited remotely to obta...

KLA91063 SB vulnerability in Microsoft Browser

A security feature bypass vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions. Original advisories CVE-2026-45585 Exploitation Public exploits exist for this vulnerability. Related products...

KLA91048 SUI vulnerability in Microsoft Products (ESU)

A spoofing vulnerability was found in Microsoft Microsoft Products Extended Security Update. Malicious users can exploit this vulnerability to perform cross-site scripting attack, spoof user interface. Original advisories CVE-2026-42897 Exploitation Public exploits exist for this vulnerability...

KLA91046 SUI vulnerability in Microsoft Server Software

A spoofing vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to perform cross-site scripting attack, spoof user interface. Original advisories CVE-2026-42897 Exploitation Public exploits exist for this vulnerability. Related products...

KB5091158 - Description of the security update for SQL Server 2022 GDR: May 12, 2026

KB5091158 - Description of the security update for SQL Server 2022 GDR: May 12, 2026 Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update More information File information ​​​​​​​Information about protection and security Summary...

KB5090408 - Description of the security update for SQL Server 2019 GDR: May 12, 2026

KB5090408 - Description of the security update for SQL Server 2019 GDR: May 12, 2026 Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update More information File information ​​​​​​​Information about protection and security Summary...

KLA91028 OSI vulnerability in Microsoft Developer Tools

An information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2026-42826 Exploitation Related products Microsoft-Azure CVE list CVE-2026-42826 critical Solution Install...

Important: Red Hat Security Advisory: OpenJDK 8u492 Windows Security Update

An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

AMD: CVE-2023-20585 IOMMU Write Buffer Vulnerability

The vulnerability assigned to this CVE could lead to corruption of guest encrypted memory. The mitigation for this vulnerability requires a Windows update. This CVE is being documented in the Security Update Guide to announce that the latest builds of Windows enable the mitigation and provide...

April 14, 2026-KB5084067 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2

April 14, 2026-KB5084067 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2 Revised April 22, 2026: Revised on April 22nd, 2026 to add the known issue section. Release Date: April 14, 2026 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes t...

KLA90949 PE vulnerabilities in Microsoft Office

An elevation of privilege vulnerabilities were found in Microsoft Purview. Malicious users can exploit these vulnerabilities to gain privileges. Original advisories CVE-2026-26138 CVE-2026-26139 Exploitation CVE list CVE-2026-26138 critical CVE-2026-26139 critical KB list Solution Install necessa...

March 10, 2026—KB5079473 (OS Builds 26200.8037 and 26100.8037)

March 10, 2026—KB5079473 OS Builds 26200.8037 and 26100.8037 This cumulative update for Windows 11, version 25H2 and 24H2 KB5079473, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences...

March 10, 2026—KB5079466 (OS Build 28000.1719)

March 10, 2026—KB5079466 OS Build 28000.1719 ​​​​​This security update for Windows 11, version 26H1 KB5079466, includes the latest security improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates, optional...

March 13, 2026—Hotpatch KB5084597 (OS Builds 26200.7982 and 26100.7982) Out-of-band

March 13, 2026—Hotpatch KB5084597 OS Builds 26200.7982 and 26100.7982 Out-of-band This update for Windows 11, version 25H2 and 24H2 KB5084597 incudes security improvements. To learn more about differences between security updates, optional non-security preview updates, out-of-band OOB updates, an...

KLA90914 PE vulnerability in Microsoft Payment Orchestrator Service

An elevation of privilege vulnerability was found in Microsoft Payment Orchestrator Service. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2026-26125 Exploitation CVE list CVE-2026-26125 critical KB list Solution Install necessary updates from the KB...

February 10, 2026—KB5077179 (OS Build 28000.1575)

February 10, 2026—KB5077179 OS Build 28000.1575 This cumulative update for Windows 11, version 26H1 KB5077179, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates,...

KB5077181: Windows 11 Version 24H2 / Windows 11 Version 25H2 Security Update (February 2026)

The remote Windows host is missing security update 5077181. It is, therefore, affected by multiple vulnerabilities - Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. CVE-2026-21513 - Access of resource using incompatible...

January 29, 2026-KB5074828 Cumulative Update Preview for .NET Framework 3.5 and 4.8.1 for Windows 11, version 25H2

January 29, 2026-KB5074828 Cumulative Update Preview for .NET Framework 3.5 and 4.8.1 for Windows 11, version 25H2 Release Date: January 29, 2026 Version: .NET Framework 3.5 and 4.8.1 The January 29, 2026 update for Windows 11, version 25H2 includes security and cumulative reliability improvement...

Important: Red Hat Security Advisory: OpenJDK 8u482 Windows Security Update

An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...

KLA90861 SB vulnerability in Microsoft Office

A security feature bypass vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2026-21509 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such...