{"vulnerability": "cve-2026-5065", "sightings": [{"uuid": "3dfd8dc7-92e9-4426-9fa7-cc0da3bd97e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5065", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtuc2pe452r", "content": "CVE-2026-5065 - IBM Controller is affected by vulnerabilities\nCVE ID : CVE-2026-5065\n \n Published : May 27, 2026, 2:17 p.m. | 52\u00a0minutes ago\n \n Description : IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic ...", "creation_timestamp": "2026-05-27T15:49:54.236479Z"}, {"uuid": "984fa7a7-a8c2-4027-bc37-2222c0c1ba84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5065", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mndh54j3t22r", "content": "\ud83d\udccc CVE-2026-5065 - IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own ... https://www.cyberhub.blog/cves/CVE-2026-5065", "creation_timestamp": "2026-06-02T20:37:05.974118Z"}, {"uuid": "ff5109b6-72c9-499e-b388-1a89ab7996c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moh7qulrzn2n", "content": "\ud83d\udfe0 CVE-2026-50656 - High (7.8)\n\nMicrosoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Mic...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-50656/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-17T02:00:50.283192Z"}, {"uuid": "97e02d74-b70e-48c3-9204-6ede015ba755", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3moi2khfamb2n", "content": "Microsoft is developing a patch for RoguePlanet, now tracked as CVE-2026-50656. The zero-day affects fully patched Windows 10 and 11 systems and may allow SYSTEM-level command prompts via a race condition. #RoguePlanet #CVE-2026-50656", "creation_timestamp": "2026-06-17T10:00:59.385488Z"}, {"uuid": "b83b3103-068d-4cfd-920b-82790d8aca81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/helpnetsecurity.com/post/3moi7sqg3ec2g", "content": "Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656)\n\n\ud83d\udcd6 Read more: www.helpnetsecurity.com/2026/06/17/r...\n\n#cybersecurity #cybersecuritynews #0day #exploit #MicrosoftDefender #vulnerabilitydisclosure", "creation_timestamp": "2026-06-17T11:34:35.117230Z"}, {"uuid": "f6cb33fc-19f5-4af8-bbe4-a8d4e5b63485", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3moia3jbbc22k", "content": "Microsoft\u3001RoguePlanet Defender\u30bc\u30ed\u30c7\u30a4\uff08CVE-2026-50656\uff09\u306e\u30d1\u30c3\u30c1\u5bfe\u5fdc\u3092\u9032\u3081\u308b\n\nMicrosoft\u306f\u3001\u300cRoguePlanet\u300d\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u3092\u901a\u3058\u3066\u30c8\u30ea\u30ac\u30fc\u53ef\u80fd\u306aMicrosoft Defender\u306e\u30ed\u30fc\u30ab\u30eb\u7279\u6a29\u6607\u683c\u306e\u554f\u984c\u3092\u8a8d\u3081\u3001\u300c\u3053\u306e\u8106\u5f31\u6027\u306b\u5bfe\u51e6\u3059\u308b\u9ad8\u54c1\u8cea\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u306e\u63d0\u4f9b\u306b\u53d6\u308a\u7d44\u3093\u3067\u3044\u308b\u300d\u3068\u8868\u660e\u3057\u307e\u3057\u305f\u3002 CVE-2026-50656\u3068\u3044\u3046\u8b58\u5225\u5b50\u304c\u5272\u308a\u5f53\u3066\u3089\u308c...", "creation_timestamp": "2026-06-17T11:39:26.045175Z"}, {"uuid": "d1e5c441-2a72-43cd-8182-1387d12798dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/ebibibibibibi.bsky.social/post/3moiarilmf32w", "content": "\ud83d\udea8 Windows 10/11 \u30e6\u30fc\u30b6\u30fc\u8981\u6ce8\u610f\uff01\n\nMicrosoft Defender\u306b\u30bc\u30ed\u30c7\u30a4\u300cRoguePlanet\u300d\uff08CVE-2026-50656\uff09\u304c\u767a\u899a\u3002\u30ec\u30fc\u30b9\u30b3\u30f3\u30c7\u30a3\u30b7\u30e7\u30f3\u3092\u60aa\u7528\u3055\u308c\u308b\u3068 SYSTEM \u6a29\u9650\u3092\u5b8c\u5168\u596a\u53d6\u3055\u308c\u308b\u6df1\u523b\u306a\u8106\u5f31\u6027\u3067\u3001\u30d1\u30c3\u30c1\u306f\u307e\u3060\u958b\u767a\u4e2d\u3002\n\n\u8a73\u7d30\u306f\u3053\u3061\u3089\ud83d\udc47\nhttps://www.ebisuda.net/tech/2026/06/17/microsoft-defenderrogueplanetcve-2026-50656windows-1011system-microsoft-working/\n\n#TechNews #Windows", "creation_timestamp": "2026-06-17T11:51:43.764524Z"}, {"uuid": "de3bdc84-e17d-4866-ac19-35f98fecb4e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-50656", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3moiezik3t22v", "content": "\ud83d\udc1b VULNERABILITIES Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656) \u2014 Help Net Security\nhttps://www.helpnetsecurity.com/2026/06/17/rogueplanet-zero-day-cve-2026-50656/ #InfoSec #CyberSecurity", "creation_timestamp": "2026-06-17T13:07:46.754682Z"}, {"uuid": "f66ef9ca-2786-475f-bc1d-3d8a23d75d68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-50656", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3moifo6ve3g2u", "content": "\ud83d\udc1b VULNERABILITIES Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656) \u2014 Help Net Security\nhttps://www.helpnetsecurity.com/2026/06/17/rogueplanet-zero-day-cve-2026-50656/ #InfoSec #CyberSecurity", "creation_timestamp": "2026-06-17T13:19:21.543883Z"}, {"uuid": "95ea7c6e-1582-4e0b-aff7-187c801d0b6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3moipeypncj2d", "content": "~Cybergcca~\nCCCS issued advisories for Oracle quarterly rollup, JetBrains GoLand, and Microsoft Malware Protection Engine (CVE-2026-50656).\n-\nIOCs: CVE-2026-50656\n-\n#JetBrains #Microsoft #Oracle #threatintel", "creation_timestamp": "2026-06-17T16:13:10.313454Z"}, {"uuid": "c0f1620c-cc56-4f6c-98de-ae5730f2777f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/microsoft-security-advisory-av26-607", "content": "", "creation_timestamp": "2026-06-17T08:36:55.000000Z"}, {"uuid": "577c1613-b63c-48e6-a310-343ef51cd5bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://thehackernews.com/2026/06/microsoft-confirms-rogueplanet-defender_02022423645.html", "content": "Microsoft has formally disclosed that it's working to release a patch to address a Defender zero-day codenamed RoguePlanet.\n\nThe vulnerability has now been assigned the CVE identifier CVE-2026-50656 (CVSS score: 7.8), with the tech giant describing it as a privilege escalation flaw.\n\n\"Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender", "creation_timestamp": "2026-06-17T15:36:28.000000Z"}, {"uuid": "a06f7668-713b-4a65-a336-8f9b7b12e5bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3moj43bau7u2y", "content": "Microsoft Defender: RoguePlanet privilege-escalation zero-day (CVE-2026-50656, CVSS 7.8). Action: check for Microsoft Defender updates and monitor for EoP-like\u2026 #Cybersecurity #ZeroDay #Vulnerability\n\nSource: https://thehackernews.com/2026/06/microsoft-confirms-rogueplanet-defender_02022423645.html", "creation_timestamp": "2026-06-17T20:00:22.775802Z"}, {"uuid": "76c0eb0e-7977-463f-8f0d-bed07b1f2507", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3moj4ehglr32g", "content": "Microsoft Defender\u3067\u7279\u6a29\u6607\u683c\u306e\u8106\u5f31\u6027\u300cRoguePlanet\u300d\uff08CVE-2026-50656\uff09\u304c\u78ba\u8a8d\u3055\u308c\u3001\u4fee\u6b63\u30d1\u30c3\u30c1\u304c\u958b\u767a\u4e2d\u3002", "creation_timestamp": "2026-06-17T20:05:32.453064Z"}, {"uuid": "8a3fbd23-0166-417a-a2b9-f70d244735e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mojf66vk5g2g", "content": "Microsoft Defender \u306e\u7279\u6a29\u6607\u683c\u306e\u8106\u5f31\u6027 CVE-2026-50656 \u304c\u78ba\u8a8d\u3055\u308c\u3001\u4fee\u6b63\u30d1\u30c3\u30c1\u304c\u958b\u767a\u4e2d\u3067\u3059\u3002", "creation_timestamp": "2026-06-17T22:43:04.330957Z"}, {"uuid": "9783769a-5bb2-4ef9-bee7-10e95a4eef84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/wdormann.infosec.exchange.ap.brid.gy/post/3mojhb77id742", "content": "Microsoft has assigned CVE-2026-50656 to this.\n\nUnlike most Microsoft CVEs, they actually mention what the exploit is in their advisory.", "creation_timestamp": "2026-06-17T23:21:35.141884Z"}, {"uuid": "91cbc663-a41e-4526-b076-4b174c92d274", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mojmtqy6eo2n", "content": "Microsoft is developing a patch for RoguePlanet, a Microsoft Defender zero-day tracked as CVE-2026-50656. The privilege escalation flaw could grant SYSTEM access via a race condition. #RoguePlanet #CVE2026-50656 #MicrosoftDefender", "creation_timestamp": "2026-06-18T01:00:25.594115Z"}, {"uuid": "880b9613-ff3c-4745-a91a-2d426c22133a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mojrwgzt3f2d", "content": "Top 3 CVE for last 7 days:\nCVE-2026-35273: 64 interactions\nCVE-2026-54420: 26 interactions\nCVE-2026-39987: 20 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-9697: 16 interactions\nCVE-2026-50656: 13 interactions\nCVE-2026-42824: 11 interactions\n", "creation_timestamp": "2026-06-18T02:31:23.743882Z"}, {"uuid": "187d09e3-8d56-4703-bfce-d9c46a07db15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mok4o2ugi22h", "content": "Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656)\n\nMicrosoft has acknowledged the local elevation of privilege issue in Microsoft Defender that can be triggered via the \u201cRoguePlanet\u201d exploit, and is \u201cworking to provide a high quality security\u2026\n#hackernews #microsoft #news", "creation_timestamp": "2026-06-18T05:43:33.966956Z"}, {"uuid": "cd3ad673-0f63-4748-9f8a-1ffdf54bc4fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mok672fsbj2d", "content": "Microsoft Defender has a public exploit that turns its own antimalware engine into a SYSTEM shell on fully patched Windows. Switching Defender off does not stop it. CVE-2026-50656, no patch yet.", "creation_timestamp": "2026-06-18T06:10:57.253253Z"}, {"uuid": "b942dc77-69c2-4f66-960c-86be7a5d623d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://infosec.exchange/users/tomcat/statuses/116770336334372316", "content": "\ud83d\udea8 Microsoft Defender zero-day RoguePlanet is now officially CVE-2026-50656.\nMicrosoft is preparing a patch for the Malware Protection Engine flaw, which can enable privilege escalation.\nA public PoC describes a race condition that may grant SYSTEM-level privileges.\nRead: https://thehackernews.com/2026/06/microsoft-confirms-rogueplanet-defender_02022423645.html", "creation_timestamp": "2026-06-18T09:12:14.716815Z"}, {"uuid": "0acef138-f586-46b4-985f-fcc4f4c7ddc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3moklb5zu3i2l", "content": "Microsoft is addressing a local elevation of privilege vulnerability in Microsoft Defender, identified as CVE-2026-50656, exploited via the RoguePlanet method.", "creation_timestamp": "2026-06-18T10:04:48.289522Z"}, {"uuid": "5e8a2ecf-93f9-4aa8-8b34-94600bc435c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/malwhere.bsky.social/post/3mokmacnrtk2t", "content": "Post 1/3\n\ud83d\udea8 New Windows Defender flaw CVE-2026-50656 (\"RoguePlanet\") has a public PoC exploit before a patch is available. The bug exploits a race condition in Defender and can lead to SYSTEM-level privilege escalation on Windows 10 &amp; 11. #CyberSecurity #Windows #ThreatIntel #RougePlanet", "creation_timestamp": "2026-06-18T10:22:20.717866Z"}, {"uuid": "71c4bd0e-3996-4866-8687-60509f497e93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/malwhere.bsky.social/post/3mokmaj54m22t", "content": "Post 1/3\n\ud83d\udea8 New Windows Defender flaw CVE-2026-50656 (\"RoguePlanet\") has a public PoC exploit before a patch is available. The bug exploits a race condition in Defender and can lead to SYSTEM-level privilege escalation on Windows 10 &amp; 11. #CyberSecurity #Windows #ThreatIntel #RougePlanet", "creation_timestamp": "2026-06-18T10:22:21.283579Z"}, {"uuid": "b9e35f04-56a9-48ca-a9ec-6ccdf2e0eb28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/malwhere.bsky.social/post/3mokmaj56kk2t", "content": "Post 1/3\n\ud83d\udea8 New Windows Defender flaw CVE-2026-50656 (\"RoguePlanet\") has a public PoC exploit before a patch is available. The bug exploits a race condition in Defender and can lead to SYSTEM-level privilege escalation on Windows 10 &amp; 11. #CyberSecurity #Windows #ThreatIntel #RougePlanet", "creation_timestamp": "2026-06-18T10:22:21.801101Z"}, {"uuid": "b3e1e361-70aa-4158-a69f-7c2eebf9a2c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sec-news-bot.bsky.social/post/3mokoggi24l2x", "content": "Microsoft\u3001Defender\u8106\u5f31\u6027CVE-2026-50656\u306e\u4fee\u6b63\u30d1\u30c3\u30c1\u3092\u958b\u767a\u4e2d\n\nMicrosoft\u306fDefender\u306e\u6a29\u9650\u6607\u683c\u8106\u5f31\u6027\u300cRoguePlanet\u300d(CVE-2026-50656)\u306e\u4fee\u6b63\u30d1\u30c3\u30c1\u3092\u958b\u767a\u4e2d\u3068\u767a\u8868\u3002\u540c\u8106\u5f31\u6027\u306f\u653b\u6483\u8005\u304c\u30b7\u30b9\u30c6\u30e0\u6a29\u9650\u3092\u53d6\u5f97\u53ef\u80fd\u306b\u3059\u308b\u3082\u306e\u3002\u30d1\u30c3\u30c1\u30ea\u30ea\u30fc\u30b9\u4e88\u5b9a\u306e\u8a73\u7d30\u306f\u672a\u767a\u8868\u3002\n\n#\u30bc\u30ed\u30c7\u30a4 #CVE #\u8106\u5f31\u6027", "creation_timestamp": "2026-06-18T11:01:36.313820Z"}, {"uuid": "c87f1574-5814-4de8-8615-a6f11e8dc6c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gfzf2b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:42.023656Z"}, {"uuid": "29c8e32c-5d93-4626-aa7f-e936fd68e9f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gntf2b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:44.311964Z"}, {"uuid": "3070daab-45a6-4a17-92fc-0815f1939c48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gmu52b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:43.178545Z"}, {"uuid": "fd5b268d-e391-47d8-821f-141e8cfdfb91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gosn2b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:45.383952Z"}, {"uuid": "41d23719-934d-4f9f-8724-f267cb74a523", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gprv2b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:46.544236Z"}, {"uuid": "c8b4ff98-2d14-4dfb-9d87-34059c263cfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gqr52b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:47.682498Z"}, {"uuid": "489c8365-8aae-4824-aae0-1fb914fe29f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gqr62b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:48.771038Z"}, {"uuid": "b2726341-5b7b-4c15-99cc-0057290a5760", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gspo2b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:49.925833Z"}, {"uuid": "a256d17f-90d6-4706-9773-2e1f4ed8f545", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mokzz3gtow2b", "content": "2/ \ud83d\udcbb Microsoft Defender has an unpatched zero-day RIGHT NOW. CVE-2026-50656 aka RoguePlanet. Grants SYSTEM privileges on fully updated Windows 10/11. Working PoC is public. No patch. 4th Defender 0-day this year from same researcher. (BleepingComputer)", "creation_timestamp": "2026-06-18T14:28:50.990634Z"}, {"uuid": "66bfd381-24bd-4748-b31f-45a5638f3c51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mol5ij4qu4w2", "content": "Microsoft working on a fix for RoguePlanet, a flaw that grants full PC control Microsoft says it's working on a fix for an unpatched Defender vulnerability that can give attackers the highest l...\n\n#Bugs #News #CVE-2026-50656 #Defender #RoguePlanet\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-18T15:31:01.439634Z"}, {"uuid": "f9fcceae-2235-48a0-8bb6-a6873209c588", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/insomnisec.bsky.social/post/3moltjmclmy2f", "content": "\ud83d\udce1 RoguePlanet (CVE-2026-50656): A Microsoft Defender Zero-Day With No Patch Yet", "creation_timestamp": "2026-06-18T22:05:19.267205Z"}, {"uuid": "49cb6b55-9aa6-4289-b62d-75db0ec16bb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/insomnisec.bsky.social/post/3molwlyvhit2o", "content": "\ud83d\udce1 RoguePlanet (CVE-2026-50656): A Microsoft Defender Zero-Day With No Patch Yet", "creation_timestamp": "2026-06-18T23:00:20.729442Z"}, {"uuid": "fb58734c-5324-4ab7-bddf-1cc98d0eaf65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3mom5oqdl6sg5", "content": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u3001Defender\u30bc\u30ed\u30c7\u30a4\u300cRoguePlanet\u300d\u306e\u4fee\u6b63\u30d1\u30c3\u30c1\u958b\u767a\u306b\u7740\u624b\uff08CVE-2026-50656\uff09 | Codebook\uff5cSecurity News https://codebook.machinarecord.com/threatreport/silobreaker-cyber-alert/46255/", "creation_timestamp": "2026-06-19T01:08:11.170649Z"}, {"uuid": "1d4dae4f-0425-4173-afa7-3e22cbab5dd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3momciyt73y2g", "content": "Top 3 CVE for last 7 days:\nCVE-2026-35273: 34 interactions\nCVE-2026-54420: 26 interactions\nCVE-2026-50656: 25 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-50656: 12 interactions\nCVE-2026-49257: 4 interactions\nCVE-2026-10736: 3 interactions\n", "creation_timestamp": "2026-06-19T02:33:25.374978Z"}, {"uuid": "305c6993-f8b8-4076-a613-9d07a4374060", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3momgiqwu4j23", "content": "RoguePlanet\uff1a\u30d1\u30c3\u30c1\u672a\u9069\u7528\u306eDefender\u6b20\u9665\u304cSYSTEM\u30ec\u30d9\u30eb\u306e\u30a2\u30af\u30bb\u30b9\u3092\u53ef\u80fd\u306b\uff08CVE-2026-50656\uff09\n\nMicrosoft\u306f\u3001Windows Defender\u306b\u65b0\u305f\u306b\u767a\u898b\u3055\u308c\u305f\u6b20\u9665\u306e\u30d1\u30c3\u30c1\u9069\u7528\u306b\u5411\u3051\u3066\u6025\u30d4\u30c3\u30c1\u3067\u53d6\u308a\u7d44\u3093\u3067\u3044\u307e\u3059\u3002\u3053\u306e\u8106\u5f31\u6027\u304c\u60aa\u7528\u3055\u308c\u308b\u3068\u3001\u653b\u6483\u8005\u306f\u5f71\u97ff\u3092\u53d7\u3051\u305f\u30de\u30b7\u30f3\u3092\u307b\u307c\u5b8c\u5168\u306b\u638c\u63e1\u3067\u304d\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u7814\u7a76\u8005\u306f\u3053\u308c\u3092\u300cRoguePlanet\u300d\u3068\u547d\u540d\u3057\u3001\u8b58\u5225\u5b50\u306fCVE-2026-506...", "creation_timestamp": "2026-06-19T03:44:51.882111Z"}, {"uuid": "fec58714-9442-4414-aba4-cc8442f14922", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3momhytyitc2h", "content": "Microsoft Confirms RoguePlanet Zero-Day in Defender, Patch Under Development\n\nMicrosoft confirmed the RoguePlanet Defender zero-day (CVE-2026-50656), a privilege escalation flaw, and is developing a security patch. Microsoft has acknowledged the RoguePlanet zero-day aff\u2026\n#hackernews #microsoft #news", "creation_timestamp": "2026-06-19T04:11:45.799281Z"}, {"uuid": "4587ab77-2533-4791-a3cb-ba7e7b016715", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/ebibibibibibi.bsky.social/post/3momusy4ked2r", "content": "https://www.ebisuda.net/tech/2026/06/02/microsoft-copilot202661ai-copilot-to-usage-billing-june-1-2026-ai-credits-token/\n3. Microsoft Defender\u306e\u30bc\u30ed\u30c7\u30a4\u300cRoguePlanet\u300d\uff08CVE-2026-50656\uff09\u3001\u30d1\u30c3\u30c1\u958b...", "creation_timestamp": "2026-06-19T08:01:11.009331Z"}, {"uuid": "3c687f05-4585-4ffa-82dd-3e3c46bfbe2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "Telegram/k8oNwSLOKFFd-CzKxEV8-Q245xg5K2GsLyDgJIrx1tOMEw", "content": "", "creation_timestamp": "2026-06-18T01:26:46.000000Z"}, {"uuid": "b2d97687-57ee-4d39-908c-b830612955b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3moostal2o52d", "content": "Top 3 CVE for last 7 days:\nCVE-2026-50656: 26 interactions\nCVE-2026-54420: 26 interactions\nCVE-2026-20262: 20 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-20253: 6 interactions\nCVE-2026-47729: 5 interactions\nCVE-2026-8713: 4 interactions\n", "creation_timestamp": "2026-06-20T02:30:47.976754Z"}, {"uuid": "644519fe-9248-4e9a-8b4a-52463b120e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mottrv2xxt2l", "content": "Top 3 CVE for last 7 days:\nCVE-2026-50656: 28 interactions\nCVE-2026-20262: 25 interactions\nCVE-2026-54420: 25 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-20253: 6 interactions\nCVE-2026-25253: 4 interactions\nCVE-2026-35469: 4 interactions\n", "creation_timestamp": "2026-06-22T02:31:15.311230Z"}, {"uuid": "383f62ec-2e63-4929-8e05-2c40a74e530d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/aegisbot.bsky.social/post/3moutld5gaj27", "content": "\ud83d\udd0d Top signals this week:\n\nCVEs: CVE-2026-20262, CVE-2026-35273, CVE-2026-39813, CVE-2026-48558, CVE-2026-50656\nActors: Ransomware, Apt, Play\n\nFull intel: https://matlock.ca/cybersecnews", "creation_timestamp": "2026-06-22T12:00:28.480892Z"}, {"uuid": "735d842b-aae1-4e7b-976f-137ae7b6fe9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3movomuqbyi2d", "content": "~Checkpoint~\nWeekly threat intel highlights FortiSandbox &amp; Splunk zero-days, AI agent exploits, and major breaches at Texas Parks &amp; Klue.\n-\nIOCs: CVE-2026-39813, CVE-2026-50656, CVE-2026-20253\n-\n#DataBreach #ThreatIntel #Vulnerabilities", "creation_timestamp": "2026-06-22T20:04:18.022018Z"}, {"uuid": "76794edb-ddc9-4536-871d-7c5eeb29975a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mowe7iydwb2a", "content": "Top 3 CVE for last 7 days:\nCVE-2026-50656: 28 interactions\nCVE-2026-20262: 23 interactions\nCVE-2026-54420: 23 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-4020: 5 interactions\nCVE-2026-6645: 5 interactions\nCVE-2025-66336: 4 interactions\n", "creation_timestamp": "2026-06-23T02:30:31.621211Z"}, {"uuid": "3a9a6120-34a7-4de7-8be3-3edbcda8ed73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mp2dsbywva2a", "content": "Security researchers disclosed RoguePlanet, a zero-day in Windows Defender that abuses its own quarantine process to gain SYSTEM-level access on fully updated Windows 10 and 11. Microsoft $MSFT confirmed it as CVE-2026-50656; a patch is still in development. It needs an existing foothold first.", "creation_timestamp": "2026-06-24T16:33:48.710974Z"}, {"uuid": "dcfbe066-494d-4bb6-813f-cd0139cff5cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mp3f5lq7nf2t", "content": "Top 3 CVE for last 7 days:\nCVE-2026-55200: 44 interactions\nCVE-2026-47729: 18 interactions\nCVE-2026-50656: 17 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-55200: 35 interactions\nCVE-2026-20230: 8 interactions\nCVE-2026-20245: 7 interactions\n", "creation_timestamp": "2026-06-25T02:30:39.412196Z"}, {"uuid": "ac17ed01-5365-49a5-bc54-782cf1feff8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/royans.bsky.social/post/3mplowvetj52j", "content": "Microsoft Defender: RoguePlanet Zero-Day CVE-2026-50656 and Woodgnat Exploitation\n\nhttps://www.securityweek.com/microsoft-working-on-patch-for-rogueplanet-zero-day\nhttps://flagthis.com/newsletter/2026/07/01/tldr/3287", "creation_timestamp": "2026-07-01T14:08:28.052333Z"}, {"uuid": "0936c639-84c1-4c5e-b56d-8883f32b7b5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://infosec.exchange/users/wdormann/statuses/116887704628294146", "content": "Microsoft has released an update to address RoguPlanet.https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2026-50656", "creation_timestamp": "2026-07-09T02:40:30.422833Z"}, {"uuid": "a696e122-0fa5-4c21-9885-f1c0607e06c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/wdormann.infosec.exchange.ap.brid.gy/post/3mq6madq3wxd2", "content": "Microsoft has released an update to address RoguPlanet.\nhttps://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2026-50656", "creation_timestamp": "2026-07-09T02:40:49.555326Z"}, {"uuid": "07aabe3e-8121-4dba-b98c-34be6ada9074", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mq75b3zf2a26", "content": "CVE-2026-50656: Microsoft Defender's RoguePlanet Vulnerability Demands Immediate Action #CVE202650656 #MicrosoftDefender #CyberSecurity", "creation_timestamp": "2026-07-09T07:45:18.645309Z"}, {"uuid": "e033e51a-8db1-44b4-a2b5-da438e5184dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mq75backz22o", "content": "CVE-2026-50656: Microsoft Defender's RoguePlanet Is a High-Risk Zero-Day #CVE202650656 #MicrosoftDefender #CyberSecurity", "creation_timestamp": "2026-07-09T07:45:23.140691Z"}, {"uuid": "46ba11ff-8cf0-4211-ad25-9a372299eb2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mq75be6oxx2f", "content": "CVE-2026-50656: Microsoft\u2019s Patch for RoguePlanet Doesn\u2019t Address Overall Risk #CyberSecurity #Microsoft #ZeroDay", "creation_timestamp": "2026-07-09T07:45:26.712557Z"}, {"uuid": "b8bbd09f-4a07-48e5-9fe8-988777ec7f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mq75bi24fz2j", "content": "CVE-2026-50656: Microsoft Patch Doesn't Address RoguePlanet's Uncertain Impact #CVE2026 #MicrosoftPatch #Cybersecurity", "creation_timestamp": "2026-07-09T07:45:30.785411Z"}, {"uuid": "3cf7d3fa-7364-418a-8463-a6ea88dfd9ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mq75bld67k2o", "content": "CVE-2026-50656: Microsoft\u2019s RoguePlanet Patch Fails to Address Exploit Concerns #CVE202650656 #Microsoft #RoguePlanet", "creation_timestamp": "2026-07-09T07:45:34.488678Z"}, {"uuid": "89bdc254-a31b-4af0-a650-b1ff14777fcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mq75boryvb2k", "content": "CVE-2026-50656: Is Microsoft\u2019s RoguePlanet Vulnerability Patch Sufficient? #CVE202650656 #RoguePlanet #MicrosoftSecurity", "creation_timestamp": "2026-07-09T07:45:37.882422Z"}, {"uuid": "d3357bae-2037-4f41-a2ad-96740dd853b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/it-connect.bsky.social/post/3mq76q7vku62i", "content": "RoguePlanet est corrig\u00e9e. \u2705 \n\nLe correctif de la CVE-2026-50656 (\u00e9l\u00e9vation de privil\u00e8ges SYSTEM sur Win 10/11) passe par le moteur Defender.\n\nVersion cible : 1.1.26060.3008\n\nPlus d'infos \ud83d\udc47\nwww.it-connect.fr/microsoft-co...\n\n#cybersecurite #windows", "creation_timestamp": "2026-07-09T08:11:39.649818Z"}, {"uuid": "7bf61db2-08e6-420a-8fe4-c29309c31caf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-50656", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mq7c6stxni2s", "content": "\ud83d\udcf0 Microsoft Tambal Celah Zero-Day \"RoguePlanet\" pada Microsoft Defender\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/09/microsoft-defender-rogueplanet-cve-2026-50656/\n\n#cve-2026-50656 #cybersecurity #keamanan #microsoft #microsoftDefender #patchTuesday #rogueplanet #teknologi", "creation_timestamp": "2026-07-09T09:13:30.299414Z"}, {"uuid": "26d53e61-fb78-4639-b02a-674e25c7c3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mq7d4pyrsp2u", "content": "\ud83d\udce2 Microsoft corrige la zero-day RoguePlanet (CVE-2026-50656) dans Microsoft Defender\n\ud83d\udcdd ## \ud83d\uddd3\ufe0f Contexte\n\nSource : BleepingComputer, publi\u00e9 le 9 juillet\u2026\nhttps://cyberveille.ch/posts/2026-07-09-microsoft-corrige-la-zero-day-rogueplanet-cve-2026-50656-dans-microsoft-defender/ #CVE_2026_50656 #Cyberveille", "creation_timestamp": "2026-07-09T09:30:13.479833Z"}, {"uuid": "7c28a6a9-227c-4448-9a84-3b5b845a69e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mq7dcnuf3l2a", "content": "Microsoft patched the RoguePlanet Microsoft Defender zero-day, CVE-2026-50656, a race condition that grants SYSTEM privileges. A public PoC exists.\n\n#MicrosoftDefender #RoguePlanet #ZeroDay #CVE #PrivilegeEscalation #Windows #InfoSec #PatchNow", "creation_timestamp": "2026-07-09T09:33:33.369867Z"}, {"uuid": "5b19c178-f8ac-45a6-865e-df71ddd41f60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mq7hditv5u27", "content": "RoguePlanet (CVE-2026-50656) race-condition privilege escalation in Defender is being patched via automatic Malware Protection Engine updates.\n", "creation_timestamp": "2026-07-09T10:45:36.887123Z"}, {"uuid": "8beee20d-8b33-4dce-a9ab-269d9c75f7a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cyberthreats.bsky.social/post/3mq7jthmhzf27", "content": "Microsoft patched CVE-2026-50656 'RoguePlanet' privilege escalation flaw in Defender via Malware Protection Engine update \ud83d\udee1\ufe0f High severity issue now resolved.\n\n#cybersecurity #infosec #malware #CVE\n\nRead more -&gt; cyberthreats247.com", "creation_timestamp": "2026-07-09T11:30:19.109899Z"}, {"uuid": "4c710d95-8e1c-4d47-b6f1-2e854c2eccb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mq7ju33bt42y", "content": "Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)", "creation_timestamp": "2026-07-09T11:30:39.573839Z"}, {"uuid": "a4077ed3-1f19-4ed1-b919-e67f9ae6273b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hapsis.bsky.social/post/3mq7jvkao722d", "content": "Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)\n\nsecurityaffairs.com/195016/secur...\n\n#Cybersecurity #ThreatIntel #Vulnerability", "creation_timestamp": "2026-07-09T11:31:30.089210Z"}, {"uuid": "89dd1c49-007d-44d9-907d-50b17c3d8379", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/bitnewsbot.bsky.social/post/3mq7k4te7na24", "content": "Microsoft patched a Defender privilege escalation flaw called RoguePlanet, tracked as CVE-2026-50656, nearly a month after public disclosure. The vulnerability, [\u2026]", "creation_timestamp": "2026-07-09T11:35:33.841266Z"}, {"uuid": "6465526f-9cc8-44d0-b5da-b782af607108", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/newstecnicas.com/post/3mq7kdn75lk2o", "content": "\ud83d\udee1\ufe0f Mitigaci\u00f3n y Gesti\u00f3n de la #Vulnerabilidad \"RoguePlanet\" (CVE-2026-50656) en #MicrosoftDefender www.newstecnicas.com/2026/07/miti...", "creation_timestamp": "2026-07-09T11:39:26.070201Z"}, {"uuid": "db7950ed-ed84-45d5-a972-d83a5b1f5e7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mq7lj5glwu26", "content": "Microsoft Defender RoguePlanet (CVE-2026-50656) privilege escalation flaw patched\u2014install the latest updates and verify Defenders\u2019 platform components are updated, then mo\u2026 #Cybersecurity #Vulnerability #Microsoft\n\nSource: https://thehackernews.com/2026/07/microsoft-patches-rogueplanet-defender.html", "creation_timestamp": "2026-07-09T12:00:20.978707Z"}, {"uuid": "e6ca66b4-fdd5-4461-915d-6d36c6a625d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mq7lxjjnib2q", "content": "Microsoft has released patches for a zero-day vulnerability in Microsoft Defender, tracked as CVE-2026-50656, which allows attackers to gain elevated privileges. The flaw, with a CVSS score of 7.8, affects versions of the Microsoft Malware Protection Engine prior to 1.1.26060.3008.", "creation_timestamp": "2026-07-09T12:08:23.298459Z"}, {"uuid": "7ac4ec97-b21a-47a9-b197-45731bda5c56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mq7nzxdmxz2c", "content": "Microsoft is rolling out a fix for Defender flaw RoguePlanet (CVE-2026-50656), which could escalate privileges to System after a public PoC dropped in June. #RoguePlanet #CVE202650656 #MicrosoftDefender", "creation_timestamp": "2026-07-09T12:45:32.161090Z"}, {"uuid": "660ad1e5-d31f-43f1-87eb-dd115157a77d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mq7ojjhh3h2g", "content": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u304cWindows Defender\u306e\u8106\u5f31\u6027\u300cRoguePlanet\u300d\u3092\u4fee\u6b63\u3059\u308b\u30d1\u30c3\u30c1\u3092\u30ea\u30ea\u30fc\u30b9(CVE-2026-50656)\n\n\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u306f\u3001Microsoft Malware Protection Engine\u5411\u3051\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u66f4\u65b0\u30d7\u30ed\u30b0\u30e9\u30e0\u3092\u3088\u3046\u3084\u304f\u30ea\u30ea\u30fc\u30b9\u3057\u3001RoguePlanet\u306e\u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u306b\u3088\u3063\u3066\u60aa\u7528\u3055\u308c\u308bWindows Defender\u306e\u30ed\u30fc\u30ab\u30eb\u6a29\u9650\u6607\u683c\u8106\u5f31\u6027CVE-2026-50656\u3092\u4fee\u6b63\u3057\u307e\u3057\u305f\u3002 \u8106...", "creation_timestamp": "2026-07-09T12:54:13.943324Z"}, {"uuid": "ce1e5ce2-a56f-41e5-a3f0-660fe27fd91a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://thehackernews.com/2026/07/microsoft-patches-rogueplanet-defender.html", "content": "Microsoft has released security updates for a Defender vulnerability known as RoguePlanet, nearly a month after details of the flaw became public.\n\nThe vulnerability, tracked as CVE-2026-50656 (CVSS score: 7.8), is a privilege escalation issue in the Microsoft Malware Protection Engine (\"mpengine.dll\"), which provides scanning, detection, and cleaning capabilities for its antivirus and", "creation_timestamp": "2026-07-09T13:00:44.689955Z"}, {"uuid": "60ae3a16-5640-433a-95e5-3071d0dbfc82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hapsis.bsky.social/post/3mq7toam4ws2n", "content": "Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656)\n\nwww.helpnetsecurity.com/2026/07/09/m...\n\n#Cybersecurity #ThreatIntel #Vulnerability", "creation_timestamp": "2026-07-09T14:26:23.415973Z"}, {"uuid": "abab6970-1d88-4f40-b117-ebf83fb42077", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqa2ym3ota2s", "content": "CVE-2026-50656: Microsoft Defender Patch Hides RoguePlanet Exploit Scale #CVE2026 #MicrosoftDefender #CyberSecurity", "creation_timestamp": "2026-07-09T16:37:25.599663Z"}, {"uuid": "2bfb1bb7-19aa-4939-a209-0a8086d32ad8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqa2yo2fo727", "content": "CVE-2026-50656: Microsoft Defender's RoguePlanet Patch Raises Doubts #CVE2026 #MicrosoftDefender #Cybersecurity", "creation_timestamp": "2026-07-09T16:37:27.571599Z"}, {"uuid": "e106fd33-f98b-4cc1-beca-ad8f52ed041c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqa2yq4qhh2j", "content": "CVE-2026-50656: Microsoft Defender's RoguePlanet Patch Lacks Transparency #CVE202650656 #MicrosoftDefender #Cybersecurity", "creation_timestamp": "2026-07-09T16:37:29.585958Z"}, {"uuid": "ab80472e-a594-4eca-b0ff-a550f57de59c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqa2ys3uai2s", "content": "CVE-2026-50656: Microsoft Defender's RoguePlanet Patch Leaves Doubts #MicrosoftDefender #CyberSecurity #InfoSec", "creation_timestamp": "2026-07-09T16:37:32.129848Z"}, {"uuid": "e56a64e7-f1fc-48e9-ba04-a765f9c46030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqa2yu6kom2f", "content": "CVE-2026-50656: Microsoft's RoguePlanet Patch Doesn't Clear the Air #CVE202650656 #Microsoft #CyberSecurity", "creation_timestamp": "2026-07-09T16:37:34.907646Z"}, {"uuid": "cfcbcfc1-6e3d-40fe-b2d5-79759753733c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqa2ywaul322", "content": "CVE-2026-50656: Is Microsoft Defender's RoguePlanet Patch Sufficient? #CVE202650656 #MicrosoftDefender #RoguePlanet", "creation_timestamp": "2026-07-09T16:37:36.009357Z"}, {"uuid": "660afa2a-9c2e-448e-b5eb-78ca7ec93bd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mqaktpkshi2d", "content": "A Defender Malware Protection Engine patch for CVE-2026-50656 may trigger mpengine.dll to leak data and write massive files, exhausting disk space on Windows 10/11.\n", "creation_timestamp": "2026-07-09T21:21:01.371131Z"}, {"uuid": "818cd4f9-57a7-448c-867e-779277eede10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://thehackernews.com/2026/07/microsoft-patches-rogueplanet-defender.html", "content": "Microsoft has released security updates for a Defender vulnerability known as RoguePlanet, nearly a month after details of the flaw became public.\n\nThe vulnerability, tracked as CVE-2026-50656 (CVSS score: 7.8), is a privilege escalation issue in the Microsoft Malware Protection Engine (\"mpengine.dll\"), which provides scanning, detection, and cleaning capabilities for its antivirus and", "creation_timestamp": "2026-07-10T01:00:48.778782Z"}, {"uuid": "a77b0852-74bc-4a66-87e3-2481b575382b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/eyalestrin.bsky.social/post/3mqbd4b4c6c2i", "content": "Microsoft releases urgent update for Windows Defender zero day (CVE-2026-50656) #patchmanagement", "creation_timestamp": "2026-07-10T04:35:17.261934Z"}, {"uuid": "cd21b9ac-b8a8-4322-89aa-3390c670bb7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mqbdcv6vn22a", "content": "Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges\n\nMicrosoft has released security updates for a Defender vulnerability known as RoguePlanet, nearly a month after details of the flaw became public.\n\nThe vulnerability, tracked as CVE-2026-50656\u2026\n#hackernews #microsoft #news", "creation_timestamp": "2026-07-10T04:39:00.160116Z"}, {"uuid": "5d21662b-0357-4740-bda0-6d3f9d7552d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mqbhvbf6t22a", "content": "Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)\n\nMicrosoft fixed RoguePlanet (CVE-2026-50656), a Defender flaw allowing local attackers to gain higher privileges through the Malware Protection Engine. Microsoft released security updates for RoguePlanet, a vul\u2026\n#hackernews #microsoft #news", "creation_timestamp": "2026-07-10T06:00:51.952497Z"}, {"uuid": "cd44901b-c61e-4e4b-a3d0-ae181832e4b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://www.acn.gov.it/portale/w/rogueplanet-risolta-la-vulnerabilita-in-microsoft-defender", "content": "Rilasciati aggiornamenti di sicurezza per risolvere la vulnerabilit\u00e0 CVE-2026-50656, nota con il nome \u201cRoguePlanet\u201d e per la quale risulta disponibile in rete un Proof of Concept (PoC), presente nel motore antimalware Microsoft Malware Protection Engine di Microsoft Defender. Tale vulnerabilit\u00e0, qualora sfruttata, potrebbe consentire ad un utente malintenzionato di elevare i propri privilegi sui sistemi interessati.", "creation_timestamp": "2026-07-10T07:01:26.086342Z"}, {"uuid": "9defda71-f7ef-4998-83ae-b6fbd758a424", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mqbs6tt4ms2a", "content": "Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656)\n\nMicrosoft has finally released a security update for its Microsoft Malware Protection Engine, which fixes CVE-2026-50656, the Windows Defender local privilege escalation vulnerability triggered by th\u2026\n#hackernews #microsoft #news", "creation_timestamp": "2026-07-10T09:05:11.198072Z"}, {"uuid": "c2d0fe36-1b0e-4747-87b4-12ac53ba9877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/termsofsurrender.bsky.social/post/3mqbuz5pqwg26", "content": "Microsoft patches the hole; defenders still waiting for permission to care\nPANIC 68% | Lag 0.0h | Microsoft has patched CVE-2026-50656, a high-severity privilege escalation flaw in Defender\u2019s Malwar\n#AfterShockIndex\nREAD MORE", "creation_timestamp": "2026-07-10T09:55:40.447823Z"}, {"uuid": "bdb21ac9-1494-4c76-aa6c-025bf9ce55cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mqc3cqquc52i", "content": "RoguePlanet Fallout: Microsoft\u2019s Defender Patch Fixes One Zero-Day but Opens Two More Attack Vectors +\u00a0Video\n\nIntroduction: Microsoft\u2019s emergency patch for the RoguePlanet Windows Defender zero-day (CVE-2026-50656) has sparked a new wave of security concerns after researcher Chaotic Eclipse (aka\u2026", "creation_timestamp": "2026-07-10T11:48:25.197031Z"}, {"uuid": "c94e6329-6fa2-4d0c-8c9f-c918fddf5dac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/365tipu.cz/post/3mqcnho757k2s", "content": "Microsoft vydal aktualizaci Malware Protection Engine (verze 1.1.26060.3008) pro opravu kritick\u00e9 chyby CVE-2026-50656 v syst\u00e9mu Defender. \u201eRoguePlanet\u201c umo\u017e\u0148oval \u00fato\u010dn\u00edk\u016fm z\u00edskat syst\u00e9mov\u00e9 opr\u00e1vn\u011bn\u00ed", "creation_timestamp": "2026-07-10T17:13:18.074896Z"}, {"uuid": "27742ee9-dc06-46df-9e28-829105898fe2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://www.acn.gov.it/portale/w/rogueplanet-risolta-la-vulnerabilita-in-microsoft-defender", "content": "Rilasciati aggiornamenti di sicurezza per risolvere la vulnerabilit\u00e0 CVE-2026-50656, nota con il nome \u201cRoguePlanet\u201d e per la quale risulta disponibile in rete un Proof of Concept (PoC), presente nel motore antimalware Microsoft Malware Protection Engine di Microsoft Defender. Tale vulnerabilit\u00e0, qualora sfruttata, potrebbe consentire ad un utente malintenzionato di elevare i propri privilegi sui sistemi interessati.", "creation_timestamp": "2026-07-11T01:00:50.672397Z"}, {"uuid": "77444a12-dca1-4040-b9fb-44ff0769aafe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mqfkuai6ik26", "content": "\u2699\ufe0f Microsoft patched 'RoguePlanet' (CVE-2026-50656, CVSS 7.8) \u2014 a priv-esc in the Defender Malware Protection Engine (mpengine.dll) granting SYSTEM. Fixed out-of-band, not Patch Tuesday. Keep Defender current.\n\n\ud83d\udd17 https://www.securityweek.com/microsoft-patches-defender-rogueplanet-vulnerability/amp/", "creation_timestamp": "2026-07-11T21:04:37.544689Z"}, {"uuid": "8c335035-6e2e-4098-9f2e-106c121a428c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/pleyades_it/12358", "content": "\u2757\ufe0fMicrosoft confirma la vulnerabilidad RoguePlanet CVE-2026-50656 #zeroday en Defender y est\u00e1 trabajando para lanzar un parche\nhttps://short.do/HsS7vD", "creation_timestamp": "2026-07-12T22:00:14.197052Z"}, {"uuid": "9fddd777-11f4-43a0-b8da-4ecae98fd02a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/pleyades_it/12358", "content": "\u2757\ufe0fMicrosoft confirma la vulnerabilidad RoguePlanet CVE-2026-50656 #zeroday en Defender y est\u00e1 trabajando para lanzar un parche\nhttps://short.do/HsS7vD", "creation_timestamp": "2026-07-13T00:00:38.104699Z"}, {"uuid": "680d0840-6b44-41bc-ac3e-ce6ffd8e14f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/aegisbot.bsky.social/post/3mqjngi26od2u", "content": "\ud83d\udd0d Top signals this week:\n\nCVEs: CVE-2026-48282, CVE-2026-50656, CVE-2026-55255, CVE-2026-20896, CVE-2026-53359\nActors: Ransomware, Apt, Play\n\nFull intel: https://matlock.ca/cybersecnews", "creation_timestamp": "2026-07-13T12:01:15.483268Z"}, {"uuid": "a0013b71-0c79-4ec3-9fad-d50aca85ebcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/true_secator/8325", "content": "Microsoft \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0443\u044e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0438\u0437-\u0437\u0430 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0437\u0430 \u0438\u044e\u043d\u044c 2026 \u0433\u043e\u0434\u0430 \u043d\u0435 \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u043b\u0438\u0441\u044c \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 Windows Server 2016, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0435 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u044b \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0431\u044b\u043b\u0430 \u043e\u043f\u0438\u0441\u0430\u043d\u0430 \u0432\u00a0\u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0438 \u0441\u043b\u0443\u0436\u0431\u044b \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0433\u043e \u043f\u043e\u0440\u0442\u0430\u043b\u0430, \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u044e\u0449\u0435\u043c\u00a0\u0436\u0430\u043b\u043e\u0431\u044b \u0418\u0422-\u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u043e\u0432\u00a0\u043e\u0431 \u043e\u0448\u0438\u0431\u043a\u0430\u0445 0x80070002 \u0438\u043b\u0438 FILE_NOT_FOUND \u043d\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445.\n\n\u0412 \u043f\u0435\u0440\u0432\u0443\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043e\u0448\u0438\u0431\u043a\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u043b\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439, \u043f\u044b\u0442\u0430\u0432\u0448\u0438\u0445\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 KB5094122, \u043d\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0432 \u043f\u0440\u0435\u0434\u0432\u0430\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 KB5087537, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0435 \u0432 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u043c\u0435\u0441\u044f\u0446\u0435.\n\nMicrosoft \u0437\u0430\u044f\u0432\u043b\u044f\u0435\u0442, \u0447\u0442\u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0440\u0435\u0448\u0435\u043d\u0430, \u0438 \u043d\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0431\u043e\u043b\u044c\u0448\u0435 \u043d\u0435 \u0434\u043e\u043b\u0436\u043d\u043e \u0432\u043e\u0437\u043d\u0438\u043a\u0430\u0442\u044c \u0441\u0431\u043e\u0435\u0432 \u043f\u0440\u0438 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 KB5094122 \u043e\u0442 \u0438\u044e\u043d\u044f 2026 \u0433\u043e\u0434\u0430.\n\n\u041e\u043f\u044f\u0442\u044c \u043d\u0430 \u0442\u0435 \u0436\u0435 \u0433\u0440\u0430\u0431\u043b\u0438 \u043f\u043e \u0445\u043e\u0434\u0443, \u0432\u0435\u0434\u044c \u0432 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u043c\u0435\u0441\u044f\u0446\u0435 Microsoft \u0443\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u043b\u0430 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u0443\u044e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0432\u044b\u0437\u044b\u0432\u0430\u0432\u0448\u0443\u044e \u0441\u0431\u043e\u0438 \u043f\u0440\u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0435 \u0438 \u043e\u0448\u0438\u0431\u043a\u0438 0x800f0922 \u043f\u0440\u0438 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Windows 11 \u043e\u0442 \u043c\u0430\u044f 2026 \u0433\u043e\u0434\u0430 (KB5089549).\n\n\u041a\u0430\u043a \u043f\u043e\u044f\u0441\u043d\u0438\u043b\u0430 Microsoft, \u043f\u0440\u0438\u0437\u043d\u0430\u0432 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0441\u0431\u043e\u0438 \u0431\u044b\u043b\u0438 \u0432\u044b\u0437\u0432\u0430\u043d\u044b \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u044b\u043c \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u044b\u043c \u043c\u0435\u0441\u0442\u043e\u043c \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u043e\u043c \u0440\u0430\u0437\u0434\u0435\u043b\u0435 EFI (ESP), \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u0435\u043b\u043e \u043a \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u043c\u0443 \u043e\u0442\u043a\u0430\u0442\u0443 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445.\n\nMicrosoft \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f \u0432 RoguePlanet Defender \u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u043e \u0440\u0430\u0431\u043e\u0442\u0435 \u043d\u0430\u0434 \u0432\u044b\u043f\u0443\u0441\u043a\u043e\u043c \u043f\u0430\u0442\u0447\u0430 \u0434\u043b\u044f \u0435\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u0440\u0438\u0441\u0432\u043e\u0435\u043d \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2026-50656\u00a0(CVSS: 7,8), \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0433\u0438\u0433\u0430\u043d\u0442 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442 \u0435\u0451 \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438.\n\n\u042d\u0442\u043e \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u043e \u043f\u043e\u0447\u0442\u0438 \u0447\u0435\u0440\u0435\u0437 \u043d\u0435\u0434\u0435\u043b\u044e \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u044b\u0439 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c Chaotic Eclipse (\u043e\u043d \u0436\u0435 Nightmare-Eclipse) \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b RoguePlanet, \u043d\u0430\u0437\u0432\u0430\u0432 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0441\u043b\u0443\u0447\u0430\u0435\u043c \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044f \u0433\u043e\u043d\u043a\u0438, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0443 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u0443\u0440\u043e\u0432\u043d\u044f SYSTEM.\n\nRoguePlanet - \u044d\u0442\u043e \u0443\u0436\u0435 \u0447\u0435\u0442\u0432\u0435\u0440\u0442\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Defender, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430\u044f Chaotic Eclipse \u0432 \u0437\u043d\u0430\u043a \u043f\u0440\u043e\u0442\u0435\u0441\u0442\u0430 \u043f\u0440\u043e\u0442\u0438\u0432 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0446\u0438\u0438 \u0437\u0430 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u044b\u0435 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b BugBounty, \u043f\u043e\u0441\u043b\u0435 BlueHammer (CVE-2026-33825), UnDefend (CVE-2026-45498) \u0438 RedSun (CVE-2026-41091), \u0432\u0441\u0435 \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0432\u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0438 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b Microsoft.", "creation_timestamp": "2026-07-13T13:00:08.080314Z"}, {"uuid": "c299b27b-3d6b-4560-a88c-a836767032db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/true_secator/8391", "content": "Microsoft \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 Defender, \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0443\u044e \u043a\u0430\u043a RoguePlanet, \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Microsoft Malware Protection Engine \u043f\u0440\u0438\u043c\u0435\u0440\u043d\u043e \u0447\u0435\u0440\u0435\u0437 \u043c\u0435\u0441\u044f\u0446 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b 0-day \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2026-50656 \u0438 \u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0433\u043e\u043d\u043a\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0434\u043e \u0443\u0440\u043e\u0432\u043d\u044f System.\n\nPoC-\u2018\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u00a0\u0434\u043b\u044f RoguePlanet \u0431\u044b\u043b \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d 9 \u0438\u044e\u043d\u044f \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u044b\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c Nightmare Eclipse (Chaotic Eclipse), \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u043c\u0435\u0441\u044f\u0446\u044b \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0434\u043b\u044f Windows \u043f\u043e\u0441\u043b\u0435 \u043a\u043e\u043d\u0444\u043b\u0438\u043a\u0442\u0430 \u0441 Microsoft \u043f\u043e \u043f\u043e\u0432\u043e\u0434\u0443 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u0445.\u00a0\n\n\u0412 \u0442\u043e \u0432\u0440\u0435\u043c\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u0432 \u0445\u043e\u0434\u0435 \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u043d\u0435 \u043f\u043e\u043a\u0430\u0437\u0430\u043b 100% \u0443\u0441\u043f\u0435\u0445\u0430, \u043d\u043e \u0435\u0433\u043e \u043c\u043e\u0436\u043d\u043e \u0431\u044b\u043b\u043e \u0431\u044b \u043f\u0435\u0440\u0435\u0440\u0430\u0431\u043e\u0442\u0430\u0442\u044c \u0434\u043b\u044f \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u043e\u0441\u0442\u0438.\n\nMicrosoft \u0432\u044b\u0434\u0430\u043b\u0430 \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u0435\u00a0\u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 16 \u0438\u044e\u043d\u044f \u0438 \u043e\u0431\u043d\u043e\u0432\u0438\u043b\u0430 \u0435\u0433\u043e 8 \u0438\u044e\u043b\u044f, \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u0443\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439. \u041a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u043d\u0435 \u043d\u0443\u0436\u043d\u043e \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u043d\u0438\u043c\u0430\u0442\u044c \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0439, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u044b\u043b\u043e \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u043e \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Microsoft Malware Protection Engine, \u0440\u0430\u0437\u0432\u0435\u0440\u043d\u0443\u0442\u043e\u0433\u043e \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438.\u00a0\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u043c\u0438\u043a\u0440\u043e\u043c\u044f\u0433\u043a\u0438\u0435 \u0437\u0430\u044f\u0432\u043b\u044f\u044e\u0442, \u0447\u0442\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0449\u0435\u0435 RoguePlanet, \u0442\u0430\u043a\u0436\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0435\u0443\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0435 \u00ab\u0443\u0433\u043b\u0443\u0431\u043b\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0437\u0430\u0449\u0438\u0442\u044b, \u043f\u0440\u0438\u0437\u0432\u0430\u043d\u043d\u044b\u0435 \u0443\u043b\u0443\u0447\u0448\u0438\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c\u044e\u00bb.\n\n\u041f\u043e\u0441\u043b\u0435 \u0432\u044b\u043f\u0443\u0441\u043a\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 Microsoft \u043f\u0430\u0442\u0447\u0435\u0439 \u0434\u043b\u044f RoguePlanet, Nightmare Eclipse \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u043f\u0440\u043e\u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043b Defender\u00a0\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b \u043d\u043e\u0432\u044b\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u0443\u0442\u0435\u0447\u043a\u0430\u043c\u0438 \u043f\u0430\u043c\u044f\u0442\u0438 \u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u043e\u0439 \u0444\u0430\u0439\u043b\u043e\u0432, \u043f\u043e\u043c\u0435\u0449\u0435\u043d\u043d\u044b\u0445 \u0432 \u043a\u0430\u0440\u0430\u043d\u0442\u0438\u043d.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u0442\u0435\u043f\u0435\u0440\u044c Nightmare Eclipse \u043f\u044b\u0442\u0430\u0435\u0442\u0441\u044f \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0438\u0442\u044c, \u043c\u043e\u0436\u043d\u043e \u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u044d\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0432\u043e\u0438\u0445 \u0446\u0435\u043b\u044f\u0445.\n\n\u041d\u0430 \u0434\u0430\u043d\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 \u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 RoguePlanet \u043d\u0435\u0442, \u043d\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0435 Nightmare Eclipse, \u0432\u0441\u0435 \u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435\u043c, \u0432\u043a\u043b\u044e\u0447\u0430\u044f RedSun (CVE-2026-41091), UnDefend (CVE-2026-45498) \u0438 BlueHammer (CVE-2026-33825).", "creation_timestamp": "2026-07-13T13:00:04.503844Z"}, {"uuid": "19655d2f-a999-40b2-89aa-5134890e7055", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/pleyades_it/12358", "content": "\u2757\ufe0fMicrosoft confirma la vulnerabilidad RoguePlanet CVE-2026-50656 #zeroday en Defender y est\u00e1 trabajando para lanzar un parche\nhttps://short.do/HsS7vD", "creation_timestamp": "2026-07-14T00:00:54.247582Z"}, {"uuid": "0bf65d3d-dba9-4ef2-bedd-a59e014932c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/true_secator/8325", "content": "Microsoft \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0443\u044e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0438\u0437-\u0437\u0430 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0437\u0430 \u0438\u044e\u043d\u044c 2026 \u0433\u043e\u0434\u0430 \u043d\u0435 \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u043b\u0438\u0441\u044c \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 Windows Server 2016, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0435 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u044b \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0431\u044b\u043b\u0430 \u043e\u043f\u0438\u0441\u0430\u043d\u0430 \u0432\u00a0\u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0438 \u0441\u043b\u0443\u0436\u0431\u044b \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0433\u043e \u043f\u043e\u0440\u0442\u0430\u043b\u0430, \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u044e\u0449\u0435\u043c\u00a0\u0436\u0430\u043b\u043e\u0431\u044b \u0418\u0422-\u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u043e\u0432\u00a0\u043e\u0431 \u043e\u0448\u0438\u0431\u043a\u0430\u0445 0x80070002 \u0438\u043b\u0438 FILE_NOT_FOUND \u043d\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445.\n\n\u0412 \u043f\u0435\u0440\u0432\u0443\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043e\u0448\u0438\u0431\u043a\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u043b\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439, \u043f\u044b\u0442\u0430\u0432\u0448\u0438\u0445\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 KB5094122, \u043d\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0432 \u043f\u0440\u0435\u0434\u0432\u0430\u0440\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 KB5087537, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0435 \u0432 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u043c\u0435\u0441\u044f\u0446\u0435.\n\nMicrosoft \u0437\u0430\u044f\u0432\u043b\u044f\u0435\u0442, \u0447\u0442\u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0440\u0435\u0448\u0435\u043d\u0430, \u0438 \u043d\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0431\u043e\u043b\u044c\u0448\u0435 \u043d\u0435 \u0434\u043e\u043b\u0436\u043d\u043e \u0432\u043e\u0437\u043d\u0438\u043a\u0430\u0442\u044c \u0441\u0431\u043e\u0435\u0432 \u043f\u0440\u0438 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 KB5094122 \u043e\u0442 \u0438\u044e\u043d\u044f 2026 \u0433\u043e\u0434\u0430.\n\n\u041e\u043f\u044f\u0442\u044c \u043d\u0430 \u0442\u0435 \u0436\u0435 \u0433\u0440\u0430\u0431\u043b\u0438 \u043f\u043e \u0445\u043e\u0434\u0443, \u0432\u0435\u0434\u044c \u0432 \u043f\u0440\u043e\u0448\u043b\u043e\u043c \u043c\u0435\u0441\u044f\u0446\u0435 Microsoft \u0443\u0436\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u043b\u0430 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u0443\u044e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0432\u044b\u0437\u044b\u0432\u0430\u0432\u0448\u0443\u044e \u0441\u0431\u043e\u0438 \u043f\u0440\u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0435 \u0438 \u043e\u0448\u0438\u0431\u043a\u0438 0x800f0922 \u043f\u0440\u0438 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Windows 11 \u043e\u0442 \u043c\u0430\u044f 2026 \u0433\u043e\u0434\u0430 (KB5089549).\n\n\u041a\u0430\u043a \u043f\u043e\u044f\u0441\u043d\u0438\u043b\u0430 Microsoft, \u043f\u0440\u0438\u0437\u043d\u0430\u0432 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u0441\u0431\u043e\u0438 \u0431\u044b\u043b\u0438 \u0432\u044b\u0437\u0432\u0430\u043d\u044b \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u044b\u043c \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u044b\u043c \u043c\u0435\u0441\u0442\u043e\u043c \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u043e\u043c \u0440\u0430\u0437\u0434\u0435\u043b\u0435 EFI (ESP), \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u0435\u043b\u043e \u043a \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u043c\u0443 \u043e\u0442\u043a\u0430\u0442\u0443 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445.\n\nMicrosoft \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f \u0432 RoguePlanet Defender \u0438 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u043e \u0440\u0430\u0431\u043e\u0442\u0435 \u043d\u0430\u0434 \u0432\u044b\u043f\u0443\u0441\u043a\u043e\u043c \u043f\u0430\u0442\u0447\u0430 \u0434\u043b\u044f \u0435\u0435 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u0440\u0438\u0441\u0432\u043e\u0435\u043d \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2026-50656\u00a0(CVSS: 7,8), \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0433\u0438\u0433\u0430\u043d\u0442 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442 \u0435\u0451 \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438.\n\n\u042d\u0442\u043e \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u043e \u043f\u043e\u0447\u0442\u0438 \u0447\u0435\u0440\u0435\u0437 \u043d\u0435\u0434\u0435\u043b\u044e \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u044b\u0439 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c Chaotic Eclipse (\u043e\u043d \u0436\u0435 Nightmare-Eclipse) \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b RoguePlanet, \u043d\u0430\u0437\u0432\u0430\u0432 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0441\u043b\u0443\u0447\u0430\u0435\u043c \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044f \u0433\u043e\u043d\u043a\u0438, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0443 \u0441 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u0443\u0440\u043e\u0432\u043d\u044f SYSTEM.\n\nRoguePlanet - \u044d\u0442\u043e \u0443\u0436\u0435 \u0447\u0435\u0442\u0432\u0435\u0440\u0442\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Defender, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430\u044f Chaotic Eclipse \u0432 \u0437\u043d\u0430\u043a \u043f\u0440\u043e\u0442\u0435\u0441\u0442\u0430 \u043f\u0440\u043e\u0442\u0438\u0432 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0446\u0438\u0438 \u0437\u0430 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u044b\u0435 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b BugBounty, \u043f\u043e\u0441\u043b\u0435 BlueHammer (CVE-2026-33825), UnDefend (CVE-2026-45498) \u0438 RedSun (CVE-2026-41091), \u0432\u0441\u0435 \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0432\u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0438 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u044b Microsoft.", "creation_timestamp": "2026-07-14T00:00:43.618372Z"}, {"uuid": "a3339890-183a-47d1-9faf-c3ab84ed5e31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/true_secator/8391", "content": "Microsoft \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0432 Defender, \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u0443\u044e \u043a\u0430\u043a RoguePlanet, \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Microsoft Malware Protection Engine \u043f\u0440\u0438\u043c\u0435\u0440\u043d\u043e \u0447\u0435\u0440\u0435\u0437 \u043c\u0435\u0441\u044f\u0446 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b 0-day \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2026-50656 \u0438 \u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442 \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0433\u043e\u043d\u043a\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0434\u043e \u0443\u0440\u043e\u0432\u043d\u044f System.\n\nPoC-\u2018\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u00a0\u0434\u043b\u044f RoguePlanet \u0431\u044b\u043b \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d 9 \u0438\u044e\u043d\u044f \u0430\u043d\u043e\u043d\u0438\u043c\u043d\u044b\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c Nightmare Eclipse (Chaotic Eclipse), \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u043c\u0435\u0441\u044f\u0446\u044b \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0434\u043b\u044f Windows \u043f\u043e\u0441\u043b\u0435 \u043a\u043e\u043d\u0444\u043b\u0438\u043a\u0442\u0430 \u0441 Microsoft \u043f\u043e \u043f\u043e\u0432\u043e\u0434\u0443 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u0445.\u00a0\n\n\u0412 \u0442\u043e \u0432\u0440\u0435\u043c\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u0432 \u0445\u043e\u0434\u0435 \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u043d\u0435 \u043f\u043e\u043a\u0430\u0437\u0430\u043b 100% \u0443\u0441\u043f\u0435\u0445\u0430, \u043d\u043e \u0435\u0433\u043e \u043c\u043e\u0436\u043d\u043e \u0431\u044b\u043b\u043e \u0431\u044b \u043f\u0435\u0440\u0435\u0440\u0430\u0431\u043e\u0442\u0430\u0442\u044c \u0434\u043b\u044f \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u043e\u0441\u0442\u0438.\n\nMicrosoft \u0432\u044b\u0434\u0430\u043b\u0430 \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u0435\u00a0\u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 16 \u0438\u044e\u043d\u044f \u0438 \u043e\u0431\u043d\u043e\u0432\u0438\u043b\u0430 \u0435\u0433\u043e 8 \u0438\u044e\u043b\u044f, \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u0443\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439. \u041a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u043d\u0435 \u043d\u0443\u0436\u043d\u043e \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u043d\u0438\u043c\u0430\u0442\u044c \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0439, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u044b\u043b\u043e \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u043e \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f Microsoft Malware Protection Engine, \u0440\u0430\u0437\u0432\u0435\u0440\u043d\u0443\u0442\u043e\u0433\u043e \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438.\u00a0\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u043c\u0438\u043a\u0440\u043e\u043c\u044f\u0433\u043a\u0438\u0435 \u0437\u0430\u044f\u0432\u043b\u044f\u044e\u0442, \u0447\u0442\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u044f\u044e\u0449\u0435\u0435 RoguePlanet, \u0442\u0430\u043a\u0436\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043d\u0435\u0443\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0435 \u00ab\u0443\u0433\u043b\u0443\u0431\u043b\u0435\u043d\u043d\u044b\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0437\u0430\u0449\u0438\u0442\u044b, \u043f\u0440\u0438\u0437\u0432\u0430\u043d\u043d\u044b\u0435 \u0443\u043b\u0443\u0447\u0448\u0438\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c\u044e\u00bb.\n\n\u041f\u043e\u0441\u043b\u0435 \u0432\u044b\u043f\u0443\u0441\u043a\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 Microsoft \u043f\u0430\u0442\u0447\u0435\u0439 \u0434\u043b\u044f RoguePlanet, Nightmare Eclipse \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u043f\u0440\u043e\u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043b Defender\u00a0\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b \u043d\u043e\u0432\u044b\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u0443\u0442\u0435\u0447\u043a\u0430\u043c\u0438 \u043f\u0430\u043c\u044f\u0442\u0438 \u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u043e\u0439 \u0444\u0430\u0439\u043b\u043e\u0432, \u043f\u043e\u043c\u0435\u0449\u0435\u043d\u043d\u044b\u0445 \u0432 \u043a\u0430\u0440\u0430\u043d\u0442\u0438\u043d.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u0442\u0435\u043f\u0435\u0440\u044c Nightmare Eclipse \u043f\u044b\u0442\u0430\u0435\u0442\u0441\u044f \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0438\u0442\u044c, \u043c\u043e\u0436\u043d\u043e \u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u044d\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0432\u043e\u0438\u0445 \u0446\u0435\u043b\u044f\u0445.\n\n\u041d\u0430 \u0434\u0430\u043d\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 \u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 RoguePlanet \u043d\u0435\u0442, \u043d\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0435 Nightmare Eclipse, \u0432\u0441\u0435 \u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435\u043c, \u0432\u043a\u043b\u044e\u0447\u0430\u044f RedSun (CVE-2026-41091), UnDefend (CVE-2026-45498) \u0438 BlueHammer (CVE-2026-33825).", "creation_timestamp": "2026-07-14T00:00:47.597974Z"}, {"uuid": "12824f95-3af3-4f9b-a44a-202887b6867c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/ctinow/253055", "content": "Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)\nhttps://ift.tt/4q6SdBl", "creation_timestamp": "2026-07-14T14:00:04.841742Z"}, {"uuid": "f2ccc975-ff9e-4d29-9ca8-77c261a9d5b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0235", "content": "Microsoft heeft kwetsbaarheden verholpen in Developer Tools als .NET en Visual Studio. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot schade uit de categorie\u00ebn zoals genoemd in bijgevoegde tabel.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide bronbestand te openen en verwerken in de ontwikkelomgeving.\n\n```\nVisual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47305 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47282 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nVisual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45496 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50520 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-57101 | 7.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-57102 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n.NET Framework: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50524 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50527 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50646 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50648 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50650 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nASP.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47300 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-47303 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50506 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56170 | 7.50 | Denial-of-Service                   | \n| CVE-2026-45646 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\n.NET: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47302 | 7.50 | Denial-of-Service                   | \n| CVE-2026-47304 | 8.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50525 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50526 | 7.00 | Manipulatie van gegevens            | \n| CVE-2026-50528 | 8.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50649 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50651 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50659 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\n.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57108 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-41109 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-14T19:01:00.114018Z"}, {"uuid": "f7242e40-0c81-49cc-8892-c7e35f1c54d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50652", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0233", "content": "Microsoft heeft kwetsbaarheden verholpen in diverse Azure componenten. Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, beveiligingsmaatregelen te omzeilen of zich verhoogde rechten toe te kennen en zo mogelijk toegang te krijgen tot gegevens waartoe de kwaadwillende aanvankelijk niet is geautoriseerd.\n\nDe ernstigste kwetsbaarheden bevonden zich in de OpenAI agent en Entra provisioning. Deze kwetsbaarheden zijn echter door Microsoft centraal reeds verholpen en slechts opgenomen ter informatie. Er zijn voor deze kwetsbaarheden geen acties vereist.\n\n```\nAzure CycleCloud: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57969 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58279 | 6.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Entra Provisioning Service (SyncFabric): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57100 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Monitor Agent: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47632 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Spring Apps: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50338 | 8.20 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Active Directory: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50652 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50653 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nAzure OpenAI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45499 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Synapse: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-26145 | 4.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n```", "creation_timestamp": "2026-07-14T19:01:02.655829Z"}, {"uuid": "c078062a-c5fa-4158-a7fc-4a8da6154c3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0235", "content": "Microsoft heeft kwetsbaarheden verholpen in Developer Tools als .NET en Visual Studio. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot schade uit de categorie\u00ebn zoals genoemd in bijgevoegde tabel.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide bronbestand te openen en verwerken in de ontwikkelomgeving.\n\n```\nVisual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47305 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47282 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nVisual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45496 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50520 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-57101 | 7.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-57102 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n.NET Framework: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50524 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50527 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50646 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50648 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50650 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nASP.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47300 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-47303 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50506 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56170 | 7.50 | Denial-of-Service                   | \n| CVE-2026-45646 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\n.NET: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47302 | 7.50 | Denial-of-Service                   | \n| CVE-2026-47304 | 8.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50525 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50526 | 7.00 | Manipulatie van gegevens            | \n| CVE-2026-50528 | 8.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50649 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50651 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50659 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\n.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57108 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-41109 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-14T19:01:01.108600Z"}, {"uuid": "eae99241-8cbd-48ab-822b-895ee4186806", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0235", "content": "Microsoft heeft kwetsbaarheden verholpen in Developer Tools als .NET en Visual Studio. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot schade uit de categorie\u00ebn zoals genoemd in bijgevoegde tabel.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide bronbestand te openen en verwerken in de ontwikkelomgeving.\n\n```\nVisual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47305 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47282 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nVisual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45496 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50520 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-57101 | 7.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-57102 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n.NET Framework: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50524 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50527 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50646 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50648 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50650 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nASP.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47300 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-47303 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50506 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56170 | 7.50 | Denial-of-Service                   | \n| CVE-2026-45646 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\n.NET: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47302 | 7.50 | Denial-of-Service                   | \n| CVE-2026-47304 | 8.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50525 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50526 | 7.00 | Manipulatie van gegevens            | \n| CVE-2026-50528 | 8.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50649 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50651 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50659 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\n.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57108 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-41109 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-14T19:01:01.173814Z"}, {"uuid": "9a0f5aa5-8361-480e-9788-ff07e7513e98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50653", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0233", "content": "Microsoft heeft kwetsbaarheden verholpen in diverse Azure componenten. Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, beveiligingsmaatregelen te omzeilen of zich verhoogde rechten toe te kennen en zo mogelijk toegang te krijgen tot gegevens waartoe de kwaadwillende aanvankelijk niet is geautoriseerd.\n\nDe ernstigste kwetsbaarheden bevonden zich in de OpenAI agent en Entra provisioning. Deze kwetsbaarheden zijn echter door Microsoft centraal reeds verholpen en slechts opgenomen ter informatie. Er zijn voor deze kwetsbaarheden geen acties vereist.\n\n```\nAzure CycleCloud: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57969 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58279 | 6.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Entra Provisioning Service (SyncFabric): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57100 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Monitor Agent: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47632 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Spring Apps: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50338 | 8.20 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Active Directory: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50652 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50653 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nAzure OpenAI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45499 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Synapse: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-26145 | 4.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n```", "creation_timestamp": "2026-07-14T19:01:02.715268Z"}, {"uuid": "20afbf88-1623-4e53-bcf2-422058c0b141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50655", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0231", "content": "Microsoft heeft een zeer groot aantal kwetsbaarheden verholpen in Windows. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de categorie\u00ebn schade, zoals genoemd in onderstaande tabel.\n\nDe ernstigste kwetsbaarheden hebben kenmerken **CVE-2026-49172, CVE-2026-56190, CVE-2026-54990, CVE-2026-49798, CVE-2026-50380, CVE-2026-50447, CVE-2026-50518, CVE-2026-56159, CVE-2026-56188 en CVE-2026-57092** toegewezen gekregen en bevinden zich in respectievelijk de FTP service, Remote Desktop (client en server), de Kernel, GDI+, Message Queuing Service, DHCP Server, Server Network Driver en VMSwitch.\nKwaadwillenden met toegang tot deze services kunnen zonder voorafgaande authenticatie mogelijk code uitvoeren of zich toegang verschaffen tot het kwetsbare systeem.\n\nNaast deze ernstige kwetsbaarheden zijn nog eens meer dan 400 kwetsbaarheden verholpen, allen varierend in ernstigheid van middelmatig tot hoog/kritiek.\n\nDoor de aard en omvang van deze updates, adviseert het NCSC om deze updates met voorrang in te zetten.\n\n```\nWindows Admin Center: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56169 | 8.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56185 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57107 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58631 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-56196 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-56197 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Management Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58544 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Audio Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34328 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50440 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Bluetooth Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58538 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Install Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50343 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nVirtual Hard Disk (VHD) Miniport Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58601 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50311 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Server Update Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50328 | 7.50 | Manipulatie van gegevens            | \n| CVE-2026-50444 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Win32K: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54107 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54986 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54112 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54114 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49805 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50297 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50325 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50416 | 3.30 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50489 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56184 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57095 | 6.20 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58632 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Terminal: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54124 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows RDP: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55003 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57979 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50376 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50445 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-54126 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-56190 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57982 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58533 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58535 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58546 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58539 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58594 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Internet Key Exchange (IKE) Protocol: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50696 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nQuality Windows Audio/Video Experience (QWAVE) service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54989 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows RPC API: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50365 | 8.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nReliable Multicast Transport Driver (RMCAST): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54982 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-54995 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Kernel Mode Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58602 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Access Service Infrastructure: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56647 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Trusted Runtime Interface Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50350 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Push Notifications: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-44800 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50363 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50434 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50339 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50430 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Common Log File System Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50697 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nContent Delivery Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50427 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows LUAFV: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50371 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows App Store: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42900 | 8.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49165 | 7.10 | Toegang tot gevoelige gegevens      | \n| CVE-2026-49784 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50356 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DNS: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49175 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49174 | 6.10 | Manipulatie van gegevens            | \n| CVE-2026-50295 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50465 | 7.10 | Manipulatie van gegevens            | \n| CVE-2026-50495 | 6.10 | Manipulatie van gegevens            | \n| CVE-2026-50487 | 8.10 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Data.dll: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50347 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Boot Loader: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58638 | 6.00 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows VMSwitch: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57092 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Access Connection Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50666 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Input Method Editor (IME): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58534 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Search Component: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50373 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50679 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nActive Directory Domain Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49164 | 8.10 | Uitvoeren van willekeurige code     | \n| CVE-2026-57976 | 6.50 | Denial-of-Service                   | \n| CVE-2026-49178 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50366 | 6.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Routing and Remote Access Service (RRAS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49791 | 7.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50451 | 7.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-57096 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nRole: DNS Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49169 | 8.00 | Uitvoeren van willekeurige code     | \n| CVE-2026-50426 | 6.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows NTFS: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58640 | 7.30 | Uitvoeren van willekeurige code     | \n| CVE-2026-49184 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-49789 | 7.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49797 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50308 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50412 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50386 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50309 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50313 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50341 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50388 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50448 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50471 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50422 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50402 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50461 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50417 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50482 | 7.30 | Uitvoeren van willekeurige code     | \n| CVE-2026-50494 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50667 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50668 | 6.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50672 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56175 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56182 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Overlay Filter: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54987 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50435 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50409 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Notification: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50337 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50334 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Backup Engine: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50406 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Image Acquisition: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50315 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Media Foundation: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54993 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58610 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-56189 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57090 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57094 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57087 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Schannel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56186 | 8.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Network Address Translation (NAT): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56181 | 8.30 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\nCode Integrity DLL (ci.dll): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50491 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows USB Hub Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50479 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DHCP Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-48564 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50370 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50518 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50685 | 7.50 | Uitvoeren van willekeurige code     | \n| CVE-2026-50683 | 8.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56159 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58627 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows App Installer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-48572 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-48571 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50400 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Storage: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58526 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Virtual Filtering Platform (VFP): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50432 | 5.30 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows HTTP.sys: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49787 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50420 | 6.20 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Wireless Networking: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58628 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DWM Core Library: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50437 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Storage Spaces Direct: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49168 | 6.20 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50299 | 6.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Codecs Library: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57083 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows GDI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50387 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows User Interface Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50454 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Internal Task Bar: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50293 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Ancillary Function Driver for WinSock: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34346 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50312 | 4.70 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50462 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-57093 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Redirected Drive Buffering: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50372 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Message Queuing: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50447 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50505 | 7.50 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Application Model: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50331 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nActive Directory Certificate Services (AD CS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54121 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Spaceport.sys: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50333 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50298 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Devices Human Interface: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50310 | 4.70 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows USB Audio Class driver (usbaudio.sys): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49794 | 4.60 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50453 | 6.10 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58528 | 6.80 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Group Policy: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50391 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Filtering Platform (WFP): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50405 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Hyper-V: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54129 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54127 | 7.40 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50485 | 4.50 | Denial-of-Service                   | \n| CVE-2026-50680 | 8.20 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nActive Directory Federation Services (AD FS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54983 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50695 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56155 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50304 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50368 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50324 | 5.90 | Denial-of-Service                   | \n| CVE-2026-50355 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50411 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50647 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50684 | 4.80 | Voordoen als andere gebruiker       | \n| CVE-2026-58529 | 7.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50476 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Projected File System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50469 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows MIDI Service Module: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50342 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56183 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56187 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft NAT Helper Components (ipnathlp.dll): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58537 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Wireless Wide Area Network Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50450 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50509 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Narrator Braille: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58635 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows OLE: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50344 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50686 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows WebView: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56173 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Network File System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56194 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56648 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56649 | 5.90 | Uitvoeren van willekeurige code     | \n| CVE-2026-56650 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Netlogon: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50500 | 7.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Speech: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49171 | 7.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Brokering File System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49162 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50305 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50361 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50466 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50458 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Connected User Experiences and Telemetry: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50421 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Bluetooth Port Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42975 | 8.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nRemote Desktop Client: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54990 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50330 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50474 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50504 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows File Explorer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-33842 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-40422 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-41087 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50473 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50442 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50389 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50456 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57084 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Secure Boot: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49783 | 7.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows Graphics Kernel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50296 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50493 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Active Directory: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55001 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54119 | 7.50 | Denial-of-Service                   | \n| CVE-2026-54115 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50682 | 7.10 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Clipboard Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49183 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50689 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Kernel-Mode Drivers: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50393 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50396 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows FTP Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49172 | 9.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows USB Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50321 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows SMB Server Network Transport Driver (srvnet.sys): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57089 | 7.50 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows CryptoAPI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55144 | 7.10 | Manipulatie van gegevens            | \n|----------------|------|-------------------------------------|\n\nWindows DHCP Client: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49181 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54128 | 8.40 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Operating Systems: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50335 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50317 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50418 | 5.10 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows Web Proxy Auto-Discovery Protocol (WPAD): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49800 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50480 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nRPC Runtime: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50346 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Cryptographic Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-44806 | 5.30 | Denial-of-Service                   | \n| CVE-2026-50302 | 4.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50352 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50681 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Client-Side Caching (CSC) Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58637 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Server Backup: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50364 | 7.30 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nSQL Server ODBC driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42990 | 9.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Installer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50490 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58540 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DWM: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58541 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Key Guard: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50303 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50378 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Event Logging Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34348 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50502 | 8.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nExtensible Storage Engine (ESENT): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57088 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Container Isolation FS Filter Driver (unionfs.sys): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50428 | 7.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows USB Print Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55000 | 6.40 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54111 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54991 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54996 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49802 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49806 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50674 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58543 | 6.30 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows SMB Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50360 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56168 | 6.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nComposite Image File System Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50381 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Internal System User Profile: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50425 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Clip Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50384 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows USB Video Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49804 | 6.60 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Help Defense: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55014 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Printer Drivers: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49166 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-55004 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Clipboard User Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50488 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft XML Core Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50359 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Unified Consent System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50326 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Win32K - GRFX: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56176 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows PowerShell: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-40400 | 8.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Secure Socket Tunneling Protocol (SSTP): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50694 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Sensor Data Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50367 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58619 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Desktop Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50369 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58626 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Server Network driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56188 | 9.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Domain Controller: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50424 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Local Security Authority Subsystem Service (LSASS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-40378 | 7.50 | Denial-of-Service                   | \n| CVE-2026-49799 | 6.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows AppX Deployment Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49803 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Message Queuing Queue Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54992 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-50439 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nDesktop Window Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50692 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58633 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58634 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft XML: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57097 | 6.40 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows SMB: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54997 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-49801 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50690 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58531 | 7.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Media: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34349 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50327 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50404 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50358 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50336 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50398 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50414 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50379 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50433 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50394 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50415 | 5.30 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50655 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50676 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50677 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58542 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nMicrosoft Graphics Component: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58609 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50483 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Print Spooler Components: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58608 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50383 | 6.10 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50499 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-57085 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nUniversal Plug and Play (upnp.dll): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49180 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50455 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58547 | 5.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Runtime: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50323 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50452 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50348 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50345 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50322 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50340 | 8.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50410 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50449 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50460 | 8.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50403 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50385 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50413 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50457 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50486 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50503 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54125 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58527 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows TCP/IP: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49177 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-54999 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50306 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50307 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Secure Kernel Mode: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42982 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50392 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Resilient File System (ReFS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54109 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-49792 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-49793 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50318 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50407 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50357 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50441 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50362 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50492 | 6.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50501 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58530 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Cloud Files Mini Filter Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50401 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50374 | 6.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58536 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58613 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Quality of Service (QoS) Packet Scheduler: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50431 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Kernel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49167 | 4.70 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49173 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54132 | 6.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58614 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-49795 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49798 | 9.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50294 | 6.20 | Toegang tot gevoelige gegevens      | \n| CVE-2026-49808 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50316 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50354 | 7.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50300 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50332 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50329 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50419 | 3.30 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50377 | 5.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50390 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50463 | 7.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50423 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50397 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50436 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50399 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50475 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50429 | 8.20 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50459 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50477 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50478 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50484 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50670 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50673 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50688 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50687 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56643 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56644 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58532 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58545 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows GDI+: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54122 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-49796 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50380 | 9.60 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Network Policy Server SNMP: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50470 | 7.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50496 | 7.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Audio Compression Manager (ACM): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50351 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Desktop Protocol: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50497 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nHTTP/2: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49788 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Universal Disk Format File System Driver (UDFS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49790 | 7.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50498 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DirectX: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49807 | 6.20 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50375 | 6.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50353 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50382 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58629 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows File History Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57091 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows BitLocker: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50661 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows Telephony Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50669 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows StateRepository API: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49170 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows WalletService: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49176 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-14T19:01:43.360408Z"}, {"uuid": "c2c78eba-b5aa-4c50-a6fe-42708d934cb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jwrze22u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:34:39.115686Z"}, {"uuid": "24625598-2ddd-4ac3-8253-aa6b72925bca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jvvr2k2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:34:12.107295Z"}, {"uuid": "c8e5f674-30db-480b-a7d0-05484a78e1fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jvvr2k2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:34:12.518112Z"}, {"uuid": "9a13ca3d-3b4a-4559-9dda-621e264259a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jvvr2k2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:34:12.925289Z"}, {"uuid": "5c92004d-69ed-46b6-8ee4-ab263af893e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2ahl2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:35:03.235069Z"}, {"uuid": "ac9d4a68-dce3-4e68-848b-d933af532634", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2bgt2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:35:30.770156Z"}, {"uuid": "c41c974f-683f-49dd-9598-e64dcfd5b6b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2keqrat2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:37:33.198785Z"}, {"uuid": "eb9e1709-fa55-4597-ab15-904aa0c1f512", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jws2dc2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:34:47.119873Z"}, {"uuid": "f3b07642-164a-4469-add2-6380476cb511", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2ahl2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:35:05.525532Z"}, {"uuid": "958c490e-7f99-4483-83fb-e7bfe3094d71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jvvww22u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:34:26.471130Z"}, {"uuid": "1556b7b4-1367-4afb-8d87-d875099da327", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jvvww22u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:34:26.897815Z"}, {"uuid": "2e9385b2-1a93-4836-bf1a-f42b691e3860", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jvvww22u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:34:27.299747Z"}, {"uuid": "95c178c1-7c2e-48ae-8ece-9ae9b6922b53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jwrze22u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:34:39.931711Z"}, {"uuid": "441d833b-b316-4600-b781-f214fb403bbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jws2dc2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:34:46.733976Z"}, {"uuid": "068c99c5-052f-4a66-8a90-4403573d4b7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jwrze22u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:34:39.541800Z"}, {"uuid": "1ad7b846-2f80-40d8-b74a-a7d0bf94a831", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jws2dc2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:34:47.540703Z"}, {"uuid": "15686e1c-9e35-4859-a9ff-84df2440be91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2ahk2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:34:53.778055Z"}, {"uuid": "585d790f-a59b-4f11-8ab9-0216698a14cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2ahk2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:34:54.185030Z"}, {"uuid": "57651824-d198-415b-9aa9-aaef75e808c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jyrz7d2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:35:37.649680Z"}, {"uuid": "c46ac8a6-f130-46f3-8d2d-9c7b0931c610", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k6ve6l2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:36:53.665888Z"}, {"uuid": "4daf558e-f198-466a-9ebb-fd5fa236dccb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2ahk2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:34:54.601293Z"}, {"uuid": "c6c9df5d-7434-48ae-891e-f15285f3ec04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2ahl2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:35:03.622881Z"}, {"uuid": "c981c59a-9612-41ad-a990-a40b4a326280", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2bgt2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:35:29.934835Z"}, {"uuid": "6aa28789-6826-4bef-bf66-e46d7d37676b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jy2bgt2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:35:30.343829Z"}, {"uuid": "0eb1d77b-1fec-4489-bbc9-22350c559b81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k3xahl2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:36:38.416779Z"}, {"uuid": "b9fca34a-c2bd-4656-bee5-c180bc193840", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2keqrat2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:37:32.775644Z"}, {"uuid": "11779b8d-a85d-4980-be67-a061c2385574", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jyrz7d2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:35:37.215179Z"}, {"uuid": "3ac9d107-3688-4899-a61d-b2b3dff9fdd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jyrz7d2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:35:38.088969Z"}, {"uuid": "e770f75d-dad4-4a80-8faf-5029ee8c5e23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jza6dd2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:36:20.427017Z"}, {"uuid": "2ed151b9-86c5-4b31-a241-fa4a0b88b8f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jza6dd2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:36:20.845723Z"}, {"uuid": "f6549590-f99d-4263-8f89-54f8a2f3a4a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jza6dd2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:36:21.265443Z"}, {"uuid": "743a4985-d409-4009-901e-74e15cfc4923", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jzn7d32u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:36:29.899318Z"}, {"uuid": "3dcd43eb-60ae-4c08-8e96-efccdb60252c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jzn7d32u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:36:30.311441Z"}, {"uuid": "07d8b035-83f7-46a5-970f-25679ee94335", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2jzn7d32u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:36:30.736290Z"}, {"uuid": "3525f3f4-d737-4397-96ad-10aa46194736", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k3xahl2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:36:38.000438Z"}, {"uuid": "6e32b72d-47d3-40ad-84ab-8ede2832c0f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k3xahl2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:36:38.828390Z"}, {"uuid": "891b87a5-2ca9-406a-9d5d-b3ed5704112f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kfaael2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:37:41.498387Z"}, {"uuid": "271d04b2-7404-4fe6-b1c8-3340a4144eb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kcamsd2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:37:24.280969Z"}, {"uuid": "f26fc2fe-969f-45a4-844b-1b2f1cc17ebe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k4fpe32u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:36:46.179270Z"}, {"uuid": "81966601-0003-4c37-ae3f-d558fa8fd730", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k4fpe32u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:36:46.599677Z"}, {"uuid": "914afcd4-1eaa-435e-8d19-519da2227f89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k4fpe32u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:36:47.351999Z"}, {"uuid": "e99e1d4c-177f-4d8e-8a64-5486dc412a13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2ka72632u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:37:08.624294Z"}, {"uuid": "ae14d42d-9b77-4d8a-bae8-f6907dfc8ab7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kbkcwl2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:37:16.007144Z"}, {"uuid": "fab62d83-8d19-43aa-adf4-30bc1b2681e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kbkcwl2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:37:16.599849Z"}, {"uuid": "c4b328d6-0baf-4c47-ab4f-1e3aa11d9d04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k6ve6l2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:36:54.540468Z"}, {"uuid": "dc3d0759-5280-4765-8bbc-50078f6703fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k7rfnd2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:37:00.769785Z"}, {"uuid": "c9339bf6-ff37-4cfc-b8b2-96fab7500911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k7rfnd2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:37:01.171609Z"}, {"uuid": "0fda09b5-732b-4cc0-bbb2-6cb5d634570f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k7rfnd2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:37:01.579635Z"}, {"uuid": "d3dfd760-ab2f-4c87-b28b-55ddd8a0fa88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2k6ve6l2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:36:54.103179Z"}, {"uuid": "40574f72-e36a-45ad-b680-2723f562d621", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2ka72632u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:37:08.227246Z"}, {"uuid": "9774e2f4-3c1e-4956-8714-4922dd88dae1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2ka72632u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:37:09.044700Z"}, {"uuid": "38c27cdd-814a-4f2f-8a61-a5076647619b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kbkcwl2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:37:15.607669Z"}, {"uuid": "240d7fb8-efc9-471e-8536-5c2d9c07d692", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2keqrat2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:37:33.622703Z"}, {"uuid": "2e14738f-53a5-4cf9-a8ac-69837bab55b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kcamsd2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:37:24.697787Z"}, {"uuid": "41360f0e-7ea3-48b1-854d-6ea832af5281", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kcamsd2u", "content": "CVE-2026-50659 | .NET Spoofing Vulnerability\n\nA header splitting bug in System.Net.Mail allows for spoofing. Do you send emails with addresses or content that is user controlled? Update.", "creation_timestamp": "2026-07-14T20:37:25.112549Z"}, {"uuid": "a3bf277e-2ed4-4dd8-8b07-41566bd577aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kfaael2u", "content": "CVE-2026-50650 | .NET Elevation of Privilege Vulnerability\n\nWhereas this one *is* an EoP in XAML handling in WPF.", "creation_timestamp": "2026-07-14T20:37:40.631146Z"}, {"uuid": "dddc5df8-3a15-4680-9db1-f1c749b889e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://bsky.app/profile/blowdart.me/post/3mqn2kfaael2u", "content": "CVE-2026-50651 | .NET Denial of Service Vulnerability\n\nThis time it's not WPF or Encrypted XML, it's HTTP/2 that has a DoS vector. Are you making or receiving HTTP/2 calls? Update", "creation_timestamp": "2026-07-14T20:37:41.081596Z"}, {"uuid": "4260adef-f25f-4c98-80d7-af33e2440d7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50655", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:16.938458Z"}, {"uuid": "73cc7ecd-f57a-4e59-a440-771b3627a53d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:26.747589Z"}, {"uuid": "63286ef7-b093-4b51-a8d5-ddfc317a55db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:28.208010Z"}, {"uuid": "869af5f3-eab5-4e63-8fec-f9af031a5b14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:25.284446Z"}, {"uuid": "3bfdc3ff-afd9-48c2-b265-11264fba3310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50652", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:31.094761Z"}, {"uuid": "6275b9e9-82a0-427a-a357-04946f591f95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50653", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:31.402837Z"}, {"uuid": "7df16f60-ada9-4490-9991-18b97f105e20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50658", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:42.436101Z"}, {"uuid": "4bb75ed8-037c-4650-b39b-e1a5a50414ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50657", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-14T22:02:43.108105Z"}, {"uuid": "b0c16edb-e759-454a-bbe9-3177695946ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/ctinow/253055", "content": "Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)\nhttps://ift.tt/4q6SdBl", "creation_timestamp": "2026-07-15T00:00:23.296150Z"}, {"uuid": "e5d4a9dd-874e-4219-860d-57dda59e96dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/secureinseconds.com/post/3mqnjfxqbdt2d", "content": "A reader sent me 'Windows Defender bug fills your disk, patch now.' Backwards. The real bug (CVE-2026-50656) lets an attacker already on your PC grab full SYSTEM control, even with Defender off. Patch anyway.\n\nhttps://secureinseconds.com/blog/2026-07-15-windows-defender-rogueplanet-0day", "creation_timestamp": "2026-07-15T01:00:03.969249Z"}, {"uuid": "0a5a3ab2-6d11-4553-a32b-78f1efcfffa5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50653", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0233", "content": "Microsoft heeft kwetsbaarheden verholpen in diverse Azure componenten. Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, beveiligingsmaatregelen te omzeilen of zich verhoogde rechten toe te kennen en zo mogelijk toegang te krijgen tot gegevens waartoe de kwaadwillende aanvankelijk niet is geautoriseerd.\n\nDe ernstigste kwetsbaarheden bevonden zich in de OpenAI agent en Entra provisioning. Deze kwetsbaarheden zijn echter door Microsoft centraal reeds verholpen en slechts opgenomen ter informatie. Er zijn voor deze kwetsbaarheden geen acties vereist.\n\n```\nAzure CycleCloud: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57969 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58279 | 6.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Entra Provisioning Service (SyncFabric): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57100 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Monitor Agent: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47632 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Spring Apps: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50338 | 8.20 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Active Directory: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50652 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50653 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nAzure OpenAI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45499 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Synapse: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-26145 | 4.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n```", "creation_timestamp": "2026-07-15T01:00:56.278369Z"}, {"uuid": "cdfa87ec-4150-47ad-8480-7671dd14cdda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0235", "content": "Microsoft heeft kwetsbaarheden verholpen in Developer Tools als .NET en Visual Studio. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot schade uit de categorie\u00ebn zoals genoemd in bijgevoegde tabel.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide bronbestand te openen en verwerken in de ontwikkelomgeving.\n\n```\nVisual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47305 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47282 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nVisual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45496 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50520 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-57101 | 7.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-57102 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n.NET Framework: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50524 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50527 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50646 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50648 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50650 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nASP.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47300 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-47303 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50506 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56170 | 7.50 | Denial-of-Service                   | \n| CVE-2026-45646 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\n.NET: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47302 | 7.50 | Denial-of-Service                   | \n| CVE-2026-47304 | 8.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50525 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50526 | 7.00 | Manipulatie van gegevens            | \n| CVE-2026-50528 | 8.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50649 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50651 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50659 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\n.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57108 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-41109 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-15T01:00:54.790941Z"}, {"uuid": "e61efedd-297f-47ed-a065-86b717c98c9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0235", "content": "Microsoft heeft kwetsbaarheden verholpen in Developer Tools als .NET en Visual Studio. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot schade uit de categorie\u00ebn zoals genoemd in bijgevoegde tabel.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide bronbestand te openen en verwerken in de ontwikkelomgeving.\n\n```\nVisual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47305 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47282 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nVisual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45496 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50520 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-57101 | 7.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-57102 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n.NET Framework: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50524 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50527 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50646 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50648 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50650 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nASP.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47300 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-47303 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50506 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56170 | 7.50 | Denial-of-Service                   | \n| CVE-2026-45646 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\n.NET: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47302 | 7.50 | Denial-of-Service                   | \n| CVE-2026-47304 | 8.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50525 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50526 | 7.00 | Manipulatie van gegevens            | \n| CVE-2026-50528 | 8.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50649 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50651 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50659 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\n.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57108 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-41109 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-15T01:00:54.035179Z"}, {"uuid": "59ac9371-9473-4861-a50d-8c8e14f3a68d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0235", "content": "Microsoft heeft kwetsbaarheden verholpen in Developer Tools als .NET en Visual Studio. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot schade uit de categorie\u00ebn zoals genoemd in bijgevoegde tabel.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide bronbestand te openen en verwerken in de ontwikkelomgeving.\n\n```\nVisual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47305 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47282 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nVisual Studio Code: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45496 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50520 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-57101 | 7.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-57102 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n.NET Framework: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50524 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50527 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50646 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50648 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50650 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nASP.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47300 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-47303 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50506 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56170 | 7.50 | Denial-of-Service                   | \n| CVE-2026-45646 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\n.NET: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47302 | 7.50 | Denial-of-Service                   | \n| CVE-2026-47304 | 8.10 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50525 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50526 | 7.00 | Manipulatie van gegevens            | \n| CVE-2026-50528 | 8.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50649 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50651 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50659 | 6.50 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\n.NET Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57108 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nGitHub Copilot and Visual Studio: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-41109 | 8.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-15T01:00:54.850041Z"}, {"uuid": "d2e8a2e9-602b-41fa-afa5-efde28baf19d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50652", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0233", "content": "Microsoft heeft kwetsbaarheden verholpen in diverse Azure componenten. Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, beveiligingsmaatregelen te omzeilen of zich verhoogde rechten toe te kennen en zo mogelijk toegang te krijgen tot gegevens waartoe de kwaadwillende aanvankelijk niet is geautoriseerd.\n\nDe ernstigste kwetsbaarheden bevonden zich in de OpenAI agent en Entra provisioning. Deze kwetsbaarheden zijn echter door Microsoft centraal reeds verholpen en slechts opgenomen ter informatie. Er zijn voor deze kwetsbaarheden geen acties vereist.\n\n```\nAzure CycleCloud: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57969 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58279 | 6.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Entra Provisioning Service (SyncFabric): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57100 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Monitor Agent: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-47632 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Spring Apps: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50338 | 8.20 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Active Directory: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50652 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50653 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nAzure OpenAI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-45499 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nAzure Synapse: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-26145 | 4.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n```", "creation_timestamp": "2026-07-15T01:00:56.197753Z"}, {"uuid": "abd75179-d98c-47d8-b8de-ea6a887ab86a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50658", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:02:14.395054Z"}, {"uuid": "0a1e015b-ee01-4c2c-a79a-237b7600a0d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50657", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:02:15.006367Z"}, {"uuid": "139a5f00-c885-41d1-bfe3-fbf293724ad4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50651", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:01:57.239233Z"}, {"uuid": "5a6180cf-10ae-460a-b604-fcbdf4d3316d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50650", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:01:58.992492Z"}, {"uuid": "376e0917-fc68-41f8-8670-e57683fac5ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50655", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0231", "content": "Microsoft heeft een zeer groot aantal kwetsbaarheden verholpen in Windows. Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot de categorie\u00ebn schade, zoals genoemd in onderstaande tabel.\n\nDe ernstigste kwetsbaarheden hebben kenmerken **CVE-2026-49172, CVE-2026-56190, CVE-2026-54990, CVE-2026-49798, CVE-2026-50380, CVE-2026-50447, CVE-2026-50518, CVE-2026-56159, CVE-2026-56188 en CVE-2026-57092** toegewezen gekregen en bevinden zich in respectievelijk de FTP service, Remote Desktop (client en server), de Kernel, GDI+, Message Queuing Service, DHCP Server, Server Network Driver en VMSwitch.\nKwaadwillenden met toegang tot deze services kunnen zonder voorafgaande authenticatie mogelijk code uitvoeren of zich toegang verschaffen tot het kwetsbare systeem.\n\nNaast deze ernstige kwetsbaarheden zijn nog eens meer dan 400 kwetsbaarheden verholpen, allen varierend in ernstigheid van middelmatig tot hoog/kritiek.\n\nDoor de aard en omvang van deze updates, adviseert het NCSC om deze updates met voorrang in te zetten.\n\n```\nWindows Admin Center: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56169 | 8.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56185 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57107 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58631 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-56196 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-56197 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Management Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58544 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Audio Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34328 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50440 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Bluetooth Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58538 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Install Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50343 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nVirtual Hard Disk (VHD) Miniport Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58601 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50311 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Server Update Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50328 | 7.50 | Manipulatie van gegevens            | \n| CVE-2026-50444 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Win32K: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54107 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54986 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54112 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54114 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49805 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50297 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50325 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50416 | 3.30 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50489 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56184 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57095 | 6.20 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58632 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Terminal: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54124 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows RDP: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55003 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57979 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50376 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50445 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-54126 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-56190 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57982 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58533 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58535 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58546 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58539 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58594 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Internet Key Exchange (IKE) Protocol: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50696 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nQuality Windows Audio/Video Experience (QWAVE) service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54989 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows RPC API: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50365 | 8.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nReliable Multicast Transport Driver (RMCAST): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54982 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-54995 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Kernel Mode Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58602 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Access Service Infrastructure: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56647 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Trusted Runtime Interface Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50350 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Push Notifications: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-44800 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50363 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50434 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50339 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50430 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Common Log File System Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50697 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nContent Delivery Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50427 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows LUAFV: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50371 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows App Store: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42900 | 8.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49165 | 7.10 | Toegang tot gevoelige gegevens      | \n| CVE-2026-49784 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50356 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DNS: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49175 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49174 | 6.10 | Manipulatie van gegevens            | \n| CVE-2026-50295 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50465 | 7.10 | Manipulatie van gegevens            | \n| CVE-2026-50495 | 6.10 | Manipulatie van gegevens            | \n| CVE-2026-50487 | 8.10 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Data.dll: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50347 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Boot Loader: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58638 | 6.00 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows VMSwitch: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57092 | 9.90 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Access Connection Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50666 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Input Method Editor (IME): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58534 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Search Component: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50373 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50679 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nActive Directory Domain Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49164 | 8.10 | Uitvoeren van willekeurige code     | \n| CVE-2026-57976 | 6.50 | Denial-of-Service                   | \n| CVE-2026-49178 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50366 | 6.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Routing and Remote Access Service (RRAS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49791 | 7.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50451 | 7.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-57096 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nRole: DNS Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49169 | 8.00 | Uitvoeren van willekeurige code     | \n| CVE-2026-50426 | 6.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows NTFS: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58640 | 7.30 | Uitvoeren van willekeurige code     | \n| CVE-2026-49184 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-49789 | 7.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49797 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50308 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50412 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50386 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50309 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50313 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50341 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50388 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50448 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50471 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50422 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50402 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50461 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50417 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50482 | 7.30 | Uitvoeren van willekeurige code     | \n| CVE-2026-50494 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50667 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50668 | 6.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50672 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56175 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56182 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Overlay Filter: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54987 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50435 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50409 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Notification: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50337 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50334 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Backup Engine: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50406 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Image Acquisition: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50315 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Media Foundation: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54993 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58610 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-56189 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57090 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57094 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-57087 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Schannel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56186 | 8.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Network Address Translation (NAT): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56181 | 8.30 | Voordoen als andere gebruiker       | \n|----------------|------|-------------------------------------|\n\nCode Integrity DLL (ci.dll): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50491 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows USB Hub Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50479 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DHCP Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-48564 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50370 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50518 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50685 | 7.50 | Uitvoeren van willekeurige code     | \n| CVE-2026-50683 | 8.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56159 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58627 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows App Installer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-48572 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-48571 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50400 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Storage: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58526 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Virtual Filtering Platform (VFP): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50432 | 5.30 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows HTTP.sys: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49787 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50420 | 6.20 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Wireless Networking: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58628 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DWM Core Library: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50437 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Storage Spaces Direct: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49168 | 6.20 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50299 | 6.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Codecs Library: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57083 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows GDI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50387 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows User Interface Core: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50454 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Internal Task Bar: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50293 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Ancillary Function Driver for WinSock: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34346 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50312 | 4.70 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50462 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-57093 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Redirected Drive Buffering: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50372 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Message Queuing: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50447 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50505 | 7.50 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Application Model: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50331 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nActive Directory Certificate Services (AD CS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54121 | 8.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Spaceport.sys: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50333 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50298 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Devices Human Interface: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50310 | 4.70 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows USB Audio Class driver (usbaudio.sys): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49794 | 4.60 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50453 | 6.10 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58528 | 6.80 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Group Policy: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50391 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Filtering Platform (WFP): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50405 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Hyper-V: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54129 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54127 | 7.40 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50485 | 4.50 | Denial-of-Service                   | \n| CVE-2026-50680 | 8.20 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nActive Directory Federation Services (AD FS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54983 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50695 | 7.50 | Denial-of-Service                   | \n| CVE-2026-56155 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50304 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50368 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50324 | 5.90 | Denial-of-Service                   | \n| CVE-2026-50355 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50411 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50647 | 7.50 | Denial-of-Service                   | \n| CVE-2026-50684 | 4.80 | Voordoen als andere gebruiker       | \n| CVE-2026-58529 | 7.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50476 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Projected File System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50469 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows MIDI Service Module: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50342 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56183 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56187 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft NAT Helper Components (ipnathlp.dll): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58537 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Wireless Wide Area Network Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50450 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50509 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Narrator Braille: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58635 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows OLE: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50344 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50686 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows WebView: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56173 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Network File System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56194 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56648 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56649 | 5.90 | Uitvoeren van willekeurige code     | \n| CVE-2026-56650 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Netlogon: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50500 | 7.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Windows Speech: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49171 | 7.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Brokering File System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49162 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50305 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50361 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50466 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50458 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Connected User Experiences and Telemetry: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50421 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Bluetooth Port Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42975 | 8.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nRemote Desktop Client: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54990 | 9.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50330 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50474 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50504 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows File Explorer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-33842 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-40422 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-41087 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50473 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50442 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50389 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50456 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-57084 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Secure Boot: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49783 | 7.80 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows Graphics Kernel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50296 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50493 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Active Directory: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55001 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54119 | 7.50 | Denial-of-Service                   | \n| CVE-2026-54115 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50682 | 7.10 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Clipboard Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49183 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50689 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Kernel-Mode Drivers: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50393 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50396 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows FTP Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49172 | 9.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows USB Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50321 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows SMB Server Network Transport Driver (srvnet.sys): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57089 | 7.50 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows CryptoAPI: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55144 | 7.10 | Manipulatie van gegevens            | \n|----------------|------|-------------------------------------|\n\nWindows DHCP Client: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49181 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54128 | 8.40 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Operating Systems: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50335 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50317 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50418 | 5.10 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows Web Proxy Auto-Discovery Protocol (WPAD): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49800 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50480 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nRPC Runtime: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50346 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Cryptographic Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-44806 | 5.30 | Denial-of-Service                   | \n| CVE-2026-50302 | 4.20 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50352 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50681 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Client-Side Caching (CSC) Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58637 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Server Backup: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50364 | 7.30 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nSQL Server ODBC driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42990 | 9.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Installer: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50490 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58540 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DWM: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58541 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Key Guard: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50303 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-50378 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Event Logging Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34348 | 6.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50502 | 8.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nExtensible Storage Engine (ESENT): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57088 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Container Isolation FS Filter Driver (unionfs.sys): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50428 | 7.10 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows USB Print Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55000 | 6.40 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54111 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54991 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54996 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49802 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49806 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50674 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58543 | 6.30 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows SMB Server: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50360 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56168 | 6.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nComposite Image File System Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50381 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Internal System User Profile: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50425 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Clip Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50384 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows USB Video Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49804 | 6.60 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Help Defense: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-55014 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft Printer Drivers: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49166 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-55004 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Clipboard User Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50488 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft XML Core Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50359 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Unified Consent System: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50326 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Win32K - GRFX: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56176 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows PowerShell: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-40400 | 8.00 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Secure Socket Tunneling Protocol (SSTP): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50694 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Sensor Data Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50367 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58619 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Desktop Services: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50369 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58626 | 8.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Server Network driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-56188 | 9.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Domain Controller: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50424 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Local Security Authority Subsystem Service (LSASS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-40378 | 7.50 | Denial-of-Service                   | \n| CVE-2026-49799 | 6.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows AppX Deployment Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49803 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Message Queuing Queue Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54992 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-50439 | 8.10 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nDesktop Window Manager: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50692 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58633 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58634 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nMicrosoft XML: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57097 | 6.40 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows SMB: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54997 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-49801 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50690 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58531 | 7.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Media: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-34349 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50327 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50404 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50358 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50336 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50398 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50414 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50379 | 7.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50433 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50394 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50415 | 5.30 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50655 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50676 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50677 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58542 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nMicrosoft Graphics Component: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58609 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50483 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Print Spooler Components: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-58608 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50383 | 6.10 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50499 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-57085 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nUniversal Plug and Play (upnp.dll): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49180 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50455 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-58547 | 5.50 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Runtime: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50323 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50452 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50348 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50345 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50322 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50340 | 8.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50410 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50449 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50460 | 8.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50403 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50385 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50413 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50457 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50486 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50503 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54125 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58527 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows TCP/IP: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49177 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-54999 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50306 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50307 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Secure Kernel Mode: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-42982 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50392 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Resilient File System (ReFS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54109 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-49792 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-49793 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50318 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50407 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50357 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50441 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50362 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50492 | 6.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50501 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58530 | 7.80 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Cloud Files Mini Filter Driver: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50401 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50374 | 6.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58536 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58613 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Quality of Service (QoS) Packet Scheduler: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50431 | 5.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Kernel: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49167 | 4.70 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49173 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-54132 | 6.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58614 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n| CVE-2026-49795 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-49798 | 9.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50294 | 6.20 | Toegang tot gevoelige gegevens      | \n| CVE-2026-49808 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50316 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50354 | 7.10 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50300 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50332 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50329 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50419 | 3.30 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50377 | 5.50 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50390 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50463 | 7.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50423 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50397 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50436 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50399 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50475 | 5.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50429 | 8.20 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50459 | 7.00 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50477 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50478 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50484 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50670 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50673 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50688 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50687 | 8.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56643 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-56644 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58532 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-58545 | 5.50 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows GDI+: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-54122 | 8.40 | Uitvoeren van willekeurige code     | \n| CVE-2026-49796 | 7.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-50380 | 9.60 | Uitvoeren van willekeurige code     | \n|----------------|------|-------------------------------------|\n\nWindows Network Policy Server SNMP: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50470 | 7.50 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50496 | 7.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nWindows Audio Compression Manager (ACM): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50351 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows Remote Desktop Protocol: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50497 | 6.50 | Toegang tot gevoelige gegevens      | \n|----------------|------|-------------------------------------|\n\nHTTP/2: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49788 | 7.50 | Denial-of-Service                   | \n|----------------|------|-------------------------------------|\n\nWindows Universal Disk Format File System Driver (UDFS): \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49790 | 7.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50498 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows DirectX: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49807 | 6.20 | Toegang tot gevoelige gegevens      | \n| CVE-2026-50375 | 6.30 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50353 | 7.80 | Verkrijgen van verhoogde rechten    | \n| CVE-2026-50382 | 8.80 | Uitvoeren van willekeurige code     | \n| CVE-2026-58629 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows File History Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-57091 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows BitLocker: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50661 | 6.10 | Omzeilen van beveiligingsmaatregel  | \n|----------------|------|-------------------------------------|\n\nWindows Telephony Service: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-50669 | 7.00 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows StateRepository API: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49170 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\nWindows WalletService: \n|----------------|------|-------------------------------------|\n| CVE-ID         | CVSS | Impact                              |\n|----------------|------|-------------------------------------|\n| CVE-2026-49176 | 7.80 | Verkrijgen van verhoogde rechten    | \n|----------------|------|-------------------------------------|\n\n```", "creation_timestamp": "2026-07-15T01:01:25.630998Z"}, {"uuid": "30b8009a-7a62-443e-9233-127ee306a8ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50655", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:01:48.980632Z"}, {"uuid": "3ee7af56-7315-4ad3-877e-b3d1eb6a50ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50659", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:02:00.578286Z"}, {"uuid": "a7526f37-e01b-4b35-ab69-7276baee3cbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50652", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:02:03.291998Z"}, {"uuid": "820d9fb8-8e80-4157-a3ea-14d99a888588", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50653", "type": "seen", "source": "https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review", "content": "Well folks. Here we are. The bug apocalypse has fully descended upon us. I\u2019ll do my best to sort this out in some way meaningful, but this month\u2019s release shows us the nay-sayers were right, and I\u2019ve got to hand it to the nay-sayers here. Excellent call. Take an extended break from your regularly scheduled activities as we let\u2019s take a look at the latest security patches from Adobe and Microsoft. If you\u2019d rather watch the full video recap covering the entire release, you can check out the Patch Report webcast on our YouTube channel. It should be posted within a couple of hours after the release.\nAdobe Patches for July 2026\nAdobe has now moved to a bimonthly release schedule, which means they will be releasing patches on the second and fourth Tuesdays of the month. I\u2019ll continue to cover the second Tuesday release here and update this blog should the fourth Tuesday release contain anything significant. I think this is a smart way to break up a monster release into something a bit more manageable. Apple has said they are taking a similar approach. We\u2019ll see if other vendors follow their lead.\nFor the first part of the July release, Adobe released 12 bulletins addressing 88 unique CVEs in Adobe ColdFusion, Commerce, After Effects, Animate, Audition, Bridge, Creative Cloud Desktop Application, Experience Manager, Illustrator, Media Encoder, Premiere Pro, and the Content Credentials SDK.\nHere\u2019s this month\u2019s overview table:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n  \n  \n  \n  \n  \n  \n  \n\n\n  \n    Bulletin ID\n    Product\n    CVE Count\n    Highest Severity\n    Highest CVSS\n    Exploited\n    Deployment Priority\n  \n\n\n  \n    APSB26-82\n    Adobe ColdFusion\n    13\n    Critical\n    9.9\n    No\n    1\n  \n  \n    APSB26-73\n    Adobe Commerce\n    13\n    Critical\n    9.6\n    No\n    2\n  \n  \n    APSB26-78\n    Adobe After Effects\n    3\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-83\n    Adobe Animate\n    6\n    Critical\n    8.6\n    No\n    3\n  \n  \n    APSB26-71\n    Adobe Audition\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-81\n    Adobe Bridge\n    6\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-77\n    Adobe Creative Cloud Desktop Application\n    2\n    Critical\n    8.1\n    No\n    3\n  \n  \n    APSB26-74\n    Adobe Experience Manager\n    13\n    Critical\n    9.6\n    No\n    3\n  \n  \n    APSB26-79\n    Adobe Illustrator\n    5\n    Critical\n    9.3\n    No\n    3\n  \n  \n    APSB26-72\n    Adobe Media Encoder\n    5\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-76\n    Adobe Premiere Pro\n    4\n    Critical\n    7.8\n    No\n    3\n  \n  \n    APSB26-80\n    Content Credentials SDK\n    12\n    Critical\n    8.2\n    No\n    3\n  \n\n\n  \n    TOTAL\n    12 bulletins\n    88\n    \n    \n    \n    \n  \n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \nWhile nothing is under active exploit, I would prioritize the Cold Fusion and Commerce patches first. The patch for Cold Fusion even clocks in with a CVSS 9.9 bug. Beyond that, most of these updates are pretty straightforward. If you\u2019re using these products, patch them. However, you can use you regular patch cadence here. \nMicrosoft Patches for July 2026\nHere it is. The Mother of All Releases. To call this record-breaking is an understatement. How to count this mess is anyone\u2019s guess, but I see new Microsoft 621 CVEs for the month of July. Some of these are in online services where no user action is required. They also list about 480 bugs in Chromium and Microsoft Edge (Chromium-based) that I won\u2019t cover here. Here\u2019s how I put this in context. I looked at the last 20 years of Microsoft releases. The CVE count year-to-date exceeds all other years\u2019 totals.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n\n    \n  \n    \n\n      \n\n      \n        \n\n          \n        \n        \n\n        \n          \n            \n              \n              \n          \n            \n                \n                \n                \n                \n                \n                \n                \n                \n\n            \n          \n        \n            \n          \n        \n\n        \n      \n        \n      \n\n    \n  \n\n\n  \n\n\n\n\n\n  \nThe products covered this month are also astonishing. There are patches for Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, .NET and Visual Studio, Github Copilot, Defender, Exchange Server, Hyper-V, Ages of Empire II, and Minecraft Server (really!). That phrase \u201cWindows components\u201d does some pretty heavy lifting here, too, as just about everything you\u2019ve ever heard of is getting patched. All told, there are 63 rated Critical, six rated Moderate, one rated Low, with the rest rated Important in severity. Eight of these bugs were submitted through the ZDI program (more on that later). Two CVEs are listed as under active exploit while one other is listed as publicly known.\nSo how do we eat this elephant? One byte at a time (pun intended). Let\u2019s start by looking a closer look at some of the more interesting updates for this month, starting with the bugs being exploited in the wild.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56155 - Active Directory Federation Services Elevation of Privilege VulnerabilityThis is one of several AD FS being patched this month, but it\u2019s the only one being actively exploited. It stems from insufficient access-control granularity and does require local access and low privileges to start, but AD FS is exactly the kind of identity infrastructure attackers love to pivot through once they're in. It can also be paired with an RCE as we often see in ransomware. Test and deploy this patch quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56164 - Microsoft SharePoint Server Elevation of Privilege VulnerabilityThe other bug being exploited in the wild this month is a modest CVSS 5.3 \u2013 but it shows why Moderate severity bugs still matter. It's a missing-authentication flaw, meaning an unauthenticated attacker can hit it over the network with no user interaction required. When something this reachable is being actively abused, patch it now and worry about the score later.\n-&nbsp;&nbsp;&nbsp; CVE-2026-57092 - Microsoft Windows VMSwitch Elevation of Privilege VulnerabilityThis patch rates the highest CVSS score for the month: a solid 9.9. It\u2019s a use-after-free that lets a low-privileged attacker escalate to full host compromise across a VM boundary. We saw something like this demonstrated at Pwn2Own Berlin on ESXi, but it clearly isn\u2019t alone. If you\u2019re using VMSwitch in your Hyper-V deployments (and you likely are), test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-50522/58644 - Microsoft SharePoint Remote Code Execution VulnerabilityThis matching pair of CVSS 9.8 bugs results from the deserialization-of-untrusted-data and are reachable without authentication or user interaction. CVE-2026-50522 was demonstrated during Pwn2Own Berlin, so it\u2019s odd to see Microsoft list it as \u201cExploit Maturity Unknown\u201d since we literally handed them a working exploit. Just another reason to do your own risk assessment and not rely 100% on the vendor. If you have any Internet accessible SharePoint servers, test and deploy this patch quickly. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-56190 - Remote Desktop Protocol Remote Code Execution Vulnerability This patch covers an unauthenticated, network-reachable, no user interaction required bug. The root cause is a classic one: use of uninitialized resource (CWE-908), meaning specially crafted RDP traffic can interact with memory that was never properly initialized, letting an attacker corrupt memory and potentially steer code execution. RDP Servers are a common target, so audit your systems to see which are internet accessible and start from there. \n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55008 - Microsoft Exchange Server Spoofing VulnerabilityIgnore the title here and treat this like the XSS bug it is. The vulnerability is listed as a CVSS 9.6 since it\u2019s a stored cross-site scripting flaw in Outlook Web Access, with a scope-changed impact that lets it break out of the web app context entirely. An attacker sends a specially crafted email, and if the victim simply opens it in OWA, arbitrary JavaScript executes in their browser session \u2014 no attachment needed, no macro warning, just viewing the message does it. If you\u2019re using OWA, test and deploy this one quickly.\n-&nbsp;&nbsp;&nbsp; CVE-2026-50518 - Windows DHCP Server Remote Code Execution VulnerabilityThere are a couple of these DHCP RCE patches in this release, but the other has caveats while this one does not. Both are heap-based buffer overflows scoring CVSS 9.8, both unauthenticated and network-reachable. If you're running DHCP Server role on anything Internet-adjacent (you're not, right?), these move to the top of the list.\n-&nbsp;&nbsp;&nbsp; CVE-2026-56188 - Windows Server Network driver Remote Code Execution VulnerabilityAnother Critical-rated bug, this one is caused by a race condition. It\u2019s always fun to see a TOCTOU bug rated this high, since race conditions are notoriously finicky to exploit reliably. While it may prove tricky to exploit, this bug could allow an attacker to execute privileged code over the network without user interaction. Don\u2019t let the race condition lull you to sleep on a wormable bug.\n-&nbsp;&nbsp;&nbsp;&nbsp;CVE-2026-55010 - Minecraft Bedrock Dedicated Server Remote Code Execution VulnerabilityFile this in the \u201cwhy not\u201d category. This bug is a heap-based buffer overflow in Minecraft Bedrock Dedicated Server, also CVSS 9.8 and also unauthenticated RCE. Yes, your kid\u2019s Minecraft server (it is your kid\u2019s server, right?) is exposed to the same class of bug as your DHCP infrastructure. Patch it anyway.\nHere\u2019s the full list of CVEs released by Microsoft for July 2026:\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n  \n\n\n  \n    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n \n \n \n \n  CVE\n  Title\n  Severity\n  CVSS\n  Public\n  Exploited\n  Type\n \n \n  CVE-2026-56155\n  Active Directory\n  Federation Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-56164\n  Microsoft SharePoint\n  Server Elevation of Privilege Vulnerability\n  Moderate\n  5.3\n  No\n  Yes\n  EoP\n \n \n  CVE-2026-50661\n  Windows BitLocker\n  Security Feature Bypass Vulnerability\n  Important\n  6.1\n  Yes\n  No\n  SFB\n \n \n  CVE-2026-54121\n  Active Directory\n  Certificate Services Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-45499 **\n  Azure OpenAI Elevation\n  of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-48564\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50370\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56159\n  DHCP Server Service\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50382\n  DirectX Graphics\n  Kernel Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-41106 **\n  Microsoft 365 Copilot\n  Elevation of Privilege Vulnerability\n  Critical\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-26145 **\n  Microsoft Azure\n  Synapse Elevation of Privilege Vulnerability\n  Critical\n  4.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-48561\n  Microsoft Copilot\n  Remote Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-55011\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55012\n  Microsoft Defender\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55944\n  Microsoft Dynamics NAV\n  and Microsoft Dynamics 365 Business Central (On Premises) Remote Code\n  Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57100 **\n  Microsoft Entra\n  Provisioning Service Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55041\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54998 **\n  Microsoft Exchange\n  Online Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55008\n  Microsoft Exchange\n  Server Spoofing Vulnerability\n  Critical\n  9.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-54992\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50314\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50467\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55018\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55022\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55045\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-55049\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55129\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55056\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55140\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55043\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55123\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55120\n  Microsoft PowerPoint\n  Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50522\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58644\n  Microsoft SharePoint\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55040\n  Microsoft SharePoint\n  Server Security Feature Bypass Vulnerability\n  Critical\n  9.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-54117\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54118\n  Microsoft SQL Server\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50655\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56189\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57090\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57094\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57087\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57092\n  Microsoft Windows\n  VMSwitch Elevation of Privilege Vulnerability\n  Critical\n  9.9\n  No\n  No\n  EoP\n \n \n  CVE-2026-55033\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55127\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55132\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55010\n  Minecraft Bedrock\n  Dedicated Server Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50474\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49164\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-54128\n  Windows DHCP Client\n  Remote Code Execution Vulnerability\n  Critical\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50518\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49796\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50380\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Critical\n  9.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-54127\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  7.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-50680\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Critical\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50327\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58542\n  Windows Media Remote\n  Code Execution Vulnerability\n  Critical\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58608\n  Windows Print Spooler\n  Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54982\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54995\n  Windows Reliable\n  Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-42982\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50392\n  Windows Secure Kernel\n  Mode Elevation of Privilege Vulnerability\n  Critical\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50694\n  Windows Secure Socket\n  Tunneling Protocol (SSTP) Remote Code Execution Vulnerability\n  Critical\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-56188\n  Windows Server Network\n  driver Remote Code Execution Vulnerability\n  Critical\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50444\n  Windows Server Update\n  Service (WSUS) Elevation of Privilege Vulnerability\n  Critical\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54999\n  Windows TCP/IP Remote\n  Code Execution Vulnerability\n  Critical\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47302\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50525\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50651\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57108\n  .NET Denial of Service\n  Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50524\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50527\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50648\n  .NET Framework Denial\n  of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50650\n  .NET Framework\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50646\n  .NET Framework Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50649\n  .NET Remote Code\n  Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47304\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50528\n  .NET Security Feature\n  Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-50659\n  .NET Spoofing\n  Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-50526\n  .NET Tampering\n  Vulnerability\n  Important\n  7\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50682\n  Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.1\n  No\n  No\n  DoS\n \n \n  CVE-2026-55001\n  Active Directory\n  Domain Services Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50647\n  Active Directory\n  Federation Server Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50684\n  Active Directory\n  Federation Server Spoofing Vulnerability\n  Important\n  4.8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56170\n  ASP.NET Core Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-47300\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47303\n  ASP.NET Core Elevation\n  of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50652\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50653\n  Azure Active Directory\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57969\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58279\n  Azure CycleCloud\n  Elevation of Privilege Vulnerability\n  Important\n  6.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-47632\n  Azure Monitor Agent\n  Metrics Extension Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50338\n  Azure Spring Apps\n  Elevation of Privilege Vulnerability\n  Important\n  8.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50488\n  Clipboard User Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50491\n  Code Integrity DLL\n  (ci.dll) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50381\n  Composite Image File\n  System driver (cimfs.sys) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50427\n  Content Delivery\n  Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50692\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58633\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58634\n  Desktop Window Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50296\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50375\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50353\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50493\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56643\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56644\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58629\n  DirectX Graphics\n  Kernel Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49174\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50495\n  DNS Client Tampering\n  Vulnerability\n  Important\n  6.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-57088\n  Extensible Storage\n  Engine (ESENT) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50663\n  Game: Age of Empires\n  II: Definitive Edition Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47282\n  GitHub Copilot and\n  Visual Studio Code Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41109\n  GitHub Copilot and\n  Visual Studio Code Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-50510\n  GitHub Copilot Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49787\n  HTTP.sys Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50420\n  HTTP.sys Information\n  Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49788\n  HTTP/2 Denial of\n  Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50696\n  Internet Key Exchange\n  (IKE) Protocol Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58617\n  M365 Copilot for iOS\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-58595\n  Microsoft Bing App for\n  IOS Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-49162\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50305\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50361\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50466\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50458\n  Microsoft Brokering\n  File System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50658\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56178\n  Microsoft Defender for\n  Endpoint for Mac Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50657\n  Microsoft Defender for\n  Endpoint for Mac Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50329\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58541\n  Microsoft DWM Core\n  Library Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58596\n  Microsoft Edge\n  (Chromium-based) Elevation of Privilege Vulnerability\n  Important\n  8.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-57991\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  7.4\n  No\n  No\n  Info\n \n \n  CVE-2026-58291\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57981\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57984\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57985\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.6\n  No\n  No\n  RCE\n \n \n  CVE-2026-57986\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57988\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-57992\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58276\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-56645\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57974\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57975\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58281\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58284\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58285\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58287\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58288\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-58289\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  9\n  No\n  No\n  RCE\n \n \n  CVE-2026-58290\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58292\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58293\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58294\n  Microsoft Edge\n  (Chromium-based) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-57983\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.7\n  No\n  No\n  SFB\n \n \n  CVE-2026-58295\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.3\n  No\n  No\n  SFB\n \n \n  CVE-2026-58525\n  Microsoft Edge\n  (Chromium-based) Security Feature Bypass Vulnerability\n  Important\n  8.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-57987\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58278\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56646\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57977\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-57993\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58282\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58283\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58286\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  8.1\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58298\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  7.2\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58524\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58296\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58297\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58300\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58522\n  Microsoft Edge for\n  Android Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-58299\n  Microsoft Edge for\n  Android Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-58523\n  Microsoft Edge for\n  Android Security Feature Bypass Vulnerability\n  Important\n  6.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50678\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.6\n  No\n  No\n  Info\n \n \n  CVE-2026-54988\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-48580\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50408\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55046\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55138\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55054\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55122\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55898\n  Microsoft Excel\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50675\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55899\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55948\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58618\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-47642\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55024\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55025\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55031\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55048\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55029\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55039\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55136\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55141\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55036\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55044\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55037\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55058\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55137\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55053\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-54131\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55947\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55949\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56156\n  Microsoft Excel Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55006\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55009\n  Microsoft Exchange\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55005\n  Microsoft Exchange\n  Server Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56642\n  Microsoft Fabric Data\n  Warehouse Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50343\n  Microsoft Install\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50439\n  Microsoft Message\n  Queuing Queue Manager Remote Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-58537\n  Microsoft NAT Helper\n  Components (ipnathlp.dll) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56193\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-55023\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55026\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-55027\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55028\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55047\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55035\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55057\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55121\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55042\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55139\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50665\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  7.8\n  No\n  No\n  Info\n \n \n  CVE-2026-56192\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56195\n  Microsoft Office\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-47290\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50301\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55017\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55125\n  Microsoft Office\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55133\n  Microsoft OneNote\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58636\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50438\n  Microsoft PC Manager\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58647\n  Microsoft PowerBI\n  Report Server Spoofing Vulnerability\n  Important\n  8\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55052\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58277\n  Microsoft SharePoint\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55051\n  Microsoft SharePoint\n  Server Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54108\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55016\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55019\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55020\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55021\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55030\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55034\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55126\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  7.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55135\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  4.6\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-56157\n  Microsoft SharePoint\n  Server Spoofing Vulnerability\n  Important\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-47296\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55002\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-47295\n  Microsoft SQL Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50468\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54116\n  Microsoft SQL Server\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-42900\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-49784\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50356\n  Microsoft Windows App\n  Store Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49165\n  Microsoft Windows App\n  Store Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54993\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58610\n  Microsoft Windows\n  Media Foundation Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55050\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55124\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55142\n  Microsoft Word\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55032\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55055\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55038\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55134\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55128\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55130\n  Microsoft Word Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50359\n  Microsoft XML Core\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-57097\n  Microsoft XML Security\n  Feature Bypass Vulnerability\n  Important\n  6.4\n  No\n  No\n  SFB\n \n \n  CVE-2026-50346\n  Netlogon RPC Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50402\n  NTFS Elevation of\n  Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50506\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-45646\n  OData for ASP.NET and\n  ASP.NET Core Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54989\n  Quality Windows\n  Audio/Video Experience (QWAVE) Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50365\n  Remote Access\n  Management service/API (RPC server) Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54990\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58594\n  Remote Desktop Client\n  Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56190\n  Remote Desktop\n  Protocol Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49783\n  Secure Boot Security\n  Feature Bypass Vulnerability\n  Important\n  7.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-42990\n  SQL Server ODBC driver\n  Elevation of Privilege Vulnerability\n  Important\n  9.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49168\n  Storage Spaces Direct\n  Elevation of Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-48581\n  Surface Broker SDMA\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49180\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50455\n  Universal Plug and\n  Play (upnp.dll) Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54111\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58543\n  Universal Print\n  Management Service Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58601\n  Virtual Hard Disk\n  (VHD) Miniport Driver Elevation of Privilege Vulernability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50520\n  Visual Studio Code\n  Remote Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-45496\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-57101\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  7.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-57102\n  Visual Studio Code\n  Security Feature Bypass Vulnerability\n  Important\n  8.8\n  No\n  No\n  SFB\n \n \n  CVE-2026-47305\n  Visual Studio Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49805\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50297\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50325\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50489\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57095\n  Win32k Elevation of\n  Privilege Vulnerability\n  Important\n  6.2\n  No\n  No\n  EoP\n \n \n  CVE-2026-50416\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-56184\n  Win32k Information\n  Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50432\n  Window Virtual\n  Filtering Platform (VFP) Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-54119\n  Windows Active\n  Directory Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-57976\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50366\n  Windows Active\n  Directory Domain Services Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49178\n  Windows Active\n  Directory Domain Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58529\n  Windows Active\n  Directory Federation Services (ADFS) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-54983\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50695\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50304\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50368\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50324\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  5.9\n  No\n  No\n  DoS\n \n \n  CVE-2026-50355\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50411\n  Windows Active\n  Directory Federation Services Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-58631\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56196\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56197\n  Windows Admin Center\n  (WAC) Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-56169\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57107\n  Windows Admin Center\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56185\n  Windows Admin Center\n  Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50312\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50462\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57093\n  Windows Ancillary\n  Function Driver for WinSock Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-34346\n  Windows Ancillary\n  Function Driver for WinSock Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-48572\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-48571\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50400\n  Windows App Package\n  Installer Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50331\n  Windows Application\n  Model Core API Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49803\n  Windows AppX\n  Deployment Extensions Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50351\n  Windows Audio\n  Compression Manager (ACM) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50440\n  Windows Audio Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34328\n  Windows Audio Service\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50406\n  Windows Backup Engine\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50364\n  Windows Backup Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-42975\n  Windows Bluetooth Port\n  Driver Remote Code Execution\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58538\n  Windows Bluetooth\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58638\n  Windows Boot Loader\n  Security Feature Bypass Vulnerability\n  Important\n  6\n  No\n  No\n  SFB\n \n \n  CVE-2026-58637\n  Windows Client-Side\n  Caching Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50384\n  Windows Clip Service\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49183\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50689\n  Windows Clipboard\n  Server Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50374\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  6.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-58536\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58613\n  Windows Cloud Files\n  Mini Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50401\n  Windows Cloud Files\n  Mini Filter Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50697\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50667\n  Windows Common Log\n  File System Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50421\n  Windows Connected User\n  Experiences and Telemetry Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50428\n  Windows Container\n  Isolation FS Filter Driver (unionfs.sys) Information Disclosure Vulnerability\n  Important\n  7.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50352\n  Windows Cryptographic\n  Services Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50302\n  Windows Cryptographic\n  Services Security Feature Bypass Vulnerability\n  Important\n  4.2\n  No\n  No\n  SFB\n \n \n  CVE-2026-55144\n  Windows Cryptography\n  API: Next Generation (CNG) Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50347\n  Windows Data.dll\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49181\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50683\n  Windows DHCP Client\n  Elevation of Privilege Vulnerability\n  Important\n  8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58627\n  Windows DHCP Server\n  Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50685\n  Windows DHCP Server\n  Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-49807\n  Windows DirectX\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-49175\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50487\n  Windows DNS Client\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50465\n  Windows DNS Client\n  Tampering Vulnerability\n  Important\n  7.1\n  No\n  No\n  Tampering\n \n \n  CVE-2026-49169\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50426\n  Windows DNS Server\n  Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50424\n  Windows Domain\n  Controller Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50300\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50437\n  Windows DWM Core\n  Library Information Disclosure \n  Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-34348\n  Windows Event Logging\n  Service Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50502\n  Windows Event Logging\n  Service Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-33842\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40422\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-41087\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50473\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50442\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50389\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50456\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57084\n  Windows File Explorer\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57091\n  Windows File History\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50405\n  Windows Filtering\n  Platform Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49172\n  Windows FTP Service\n  Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50387\n  Windows GDI Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54122\n  Windows GDI+ Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-50483\n  Windows Graphics\n  Component Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58609\n  Windows Graphics\n  Component Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50391\n  Windows Group Policy\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50310\n  Windows Human\n  Interface Device Information Disclosure Vulnerability\n  Important\n  4.7\n  No\n  No\n  Info\n \n \n  CVE-2026-50485\n  Windows Hyper-V Denial\n  of Service Vulnerability\n  Important\n  4.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-54129\n  Windows Hyper-V\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50315\n  Windows Image\n  Acquisition Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58534\n  Windows Input Method\n  Editor (IME) Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50490\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58540\n  Windows Installer\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50425\n  Windows Internal\n  System User Profile Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50293\n  Windows Internal Task\n  Bar Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49167\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  4.7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49173\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54132\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49795\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49798\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  9.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-49808\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50354\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50332\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50377\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50390\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50423\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50397\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50436\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50399\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50459\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50477\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50478\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50484\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50673\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58532\n  Windows Kernel\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50294\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  6.2\n  No\n  No\n  Info\n \n \n  CVE-2026-50316\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50419\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  3.3\n  No\n  No\n  Info\n \n \n  CVE-2026-50463\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50475\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50429\n  Windows Kernel\n  Information Disclosure Vulnerability\n  Important\n  8.2\n  No\n  No\n  Info\n \n \n  CVE-2026-58614\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58545\n  Windows Kernel\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-58602\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50393\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50396\n  Windows Kernel-Mode\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50378\n  Windows Key Guard\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50303\n  Windows Key Guard\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-40378\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  7.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-49799\n  Windows Local Security\n  Authority Subsystem Service (LSASS) Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50371\n  Windows LUA File\n  Virtualization Filter Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58544\n  Windows Management\n  Services Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50404\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50358\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50336\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50398\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50414\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50379\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50433\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50676\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50677\n  Windows Media\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-34349\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50394\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50415\n  Windows Media\n  Information Disclosure Vulnerability\n  Important\n  5.3\n  No\n  No\n  Info\n \n \n  CVE-2026-57083\n  Windows Media Photo\n  Codec Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54115\n  Windows Message\n  Queuing (MSMQ) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50447\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  9.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50505\n  Windows Message\n  Queuing Service (MSMQ) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50342\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56183\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56187\n  Windows MIDI Service\n  Module Elevation of Privileges Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58635\n  Windows Narrator\n  Braille Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50500\n  Windows Netlogon\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50476\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50450\n  Windows Network\n  Connections Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56650\n  Windows Network File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56649\n  Windows Network File\n  System Remote Code Execution Vulnerability\n  Important\n  5.9\n  No\n  No\n  RCE\n \n \n  CVE-2026-50470\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50496\n  Windows Network Policy\n  Server SNMP Information Disclosure Vulnerability\n  Important\n  7.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56194\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56648\n  Windows NFS Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50337\n  Windows Notification\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49789\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50412\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50422\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50672\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-56175\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56182\n  Windows NTFS Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50341\n  Windows NTFS\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58640\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-49184\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  8.4\n  No\n  No\n  RCE\n \n \n  CVE-2026-49797\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50308\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50386\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50309\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50313\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50388\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50448\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50471\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50461\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50417\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50482\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.3\n  No\n  No\n  RCE\n \n \n  CVE-2026-50494\n  Windows NTFS Remote\n  Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50344\n  Windows OLE Elevation\n  of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50686\n  Windows OLE Remote\n  Code Execution Vulnerability\n  Important\n  8.1\n  No\n  No\n  RCE\n \n \n  CVE-2026-50335\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50317\n  Windows Operating\n  Systems Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54987\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50435\n  Windows Overlay Filter\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50409\n  Windows Overlay Filter\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-40400\n  Windows PowerShell\n  Remote Code Execution Vulnerability\n  Important\n  8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49166\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55004\n  Windows Print\n  Configuration Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50499\n  Windows Print Spooler\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50383\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-57085\n  Windows Print Spooler\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50469\n  Windows Projected File\n  System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50434\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50339\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50430\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50334\n  Windows Push\n  Notification Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-44800\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50363\n  Windows Push\n  Notifications Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50431\n  Windows Quality of\n  Service (QoS) Packet Scheduler Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50372\n  Windows Redirected\n  Drive Buffering System Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50666\n  Windows Remote Access\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56647\n  Windows Remote Access\n  Service Infrastructure Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50330\n  Windows Remote Desktop\n  Client Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50376\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50504\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58533\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58535\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58546\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-58539\n  Windows Remote Desktop\n  Client Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-55003\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57979\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50445\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50497\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-54126\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-57982\n  Windows Remote Desktop\n  Protocol (RDP) Information Disclosure Vulnerability\n  Important\n  6.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50369\n  Windows Remote Desktop\n  Services Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58626\n  Windows Remote Desktop\n  Services Remote Code Execution Vulnerability\n  Important\n  8.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-55014\n  Windows Remote Help\n  Defense Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50318\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50407\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50357\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50441\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50668\n  Windows Resilient File\n  System (ReFS) Elevation of Privilege Vulnerability\n  Important\n  6.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54109\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49792\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49793\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50362\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50492\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50501\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-58530\n  Windows Resilient File\n  System (ReFS) Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-49791\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50451\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-57096\n  Windows Routing and\n  Remote Access Service (RRAS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50323\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50452\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50348\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50345\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50322\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50340\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-50410\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50449\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50460\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.1\n  No\n  No\n  EoP\n \n \n  CVE-2026-50403\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50385\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50413\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50457\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50486\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50503\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54125\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58527\n  Windows Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50373\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50679\n  Windows Search Service\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-44806\n  Windows Secure Channel\n  Denial of Service Vulnerability\n  Important\n  5.3\n  No\n  No\n  DoS\n \n \n  CVE-2026-50681\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56186\n  Windows Secure Channel\n  Information Disclosure Vulnerability\n  Important\n  8.1\n  No\n  No\n  Info\n \n \n  CVE-2026-50367\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58619\n  Windows Sensor Data\n  Service Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50311\n  Windows Server\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50328\n  Windows Server Update\n  Service (WSUS) Tampering Vulnerability\n  Important\n  7.5\n  No\n  No\n  Tampering\n \n \n  CVE-2026-58531\n  Windows SMB Elevation\n  of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-54997\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-49801\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50690\n  Windows SMB\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-56168\n  Windows SMB Server\n  Denial of Service Vulnerability\n  Important\n  6.5\n  No\n  No\n  DoS\n \n \n  CVE-2026-50360\n  Windows SMB Server\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57089\n  Windows SMB Server\n  Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability\n  Important\n  7.5\n  No\n  No\n  RCE\n \n \n  CVE-2026-50333\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50298\n  Windows Spaceport.sys\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49171\n  Windows Speech Runtime\n  Elevation of Privilege Vulnerability\n  Important\n  7.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49170\n  Windows\n  StateRepository API Server file Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58526\n  Windows Storage\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50299\n  Windows Storage Spaces\n  Direct Remote Code Execution Vulnerability\n  Important\n  6.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-57968\n  Windows Subsystem for\n  Linux (WSL2) Kernel Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-57973\n  Windows Subsystem for\n  Linux (WSL2) Kernel Tampering Vulnerability\n  Important\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-50418\n  Windows System Secure\n  Feature Bypass Vulnerability\n  Important\n  5.1\n  No\n  No\n  SFB\n \n \n  CVE-2026-50306\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50307\n  Windows TCP/IP\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49177\n  Windows TCP/IP\n  Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50669\n  Windows Telephony\n  Server Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-54124\n  Windows Terminal\n  Remote Code Execution Vulnerability\n  Important\n  7.8\n  No\n  No\n  RCE\n \n \n  CVE-2026-50350\n  Windows Trusted\n  Runtime Interface Driver Information Disclosure Vulnerability\n  Important\n  5.5\n  No\n  No\n  Info\n \n \n  CVE-2026-50326\n  Windows Unified\n  Consent System Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49790\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.3\n  No\n  No\n  EoP\n \n \n  CVE-2026-50498\n  Windows Universal Disk\n  Format File System Driver (UDFS) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58547\n  Windows Universal Plug\n  and Play (UPnP) Device Host Elevation of Privilege Vulnerability\n  Important\n  5.5\n  No\n  No\n  EoP\n \n \n  CVE-2026-49794\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  4.6\n  No\n  No\n  Info\n \n \n  CVE-2026-50453\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.1\n  No\n  No\n  Info\n \n \n  CVE-2026-58528\n  Windows USB Audio\n  Class Driver Information Disclosure Vulnerability\n  Important\n  6.8\n  No\n  No\n  Info\n \n \n  CVE-2026-50321\n  Windows USB Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50479\n  Windows USB Hub Driver\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55000\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.4\n  No\n  No\n  EoP\n \n \n  CVE-2026-54991\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54996\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49802\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49806\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-50674\n  Windows USB Print\n  Driver Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-49804\n  Windows USB Video\n  Driver Elevation of Privilege Vulnerability\n  Important\n  6.6\n  No\n  No\n  EoP\n \n \n  CVE-2026-50454\n  Windows User Interface\n  Core Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49176\n  Windows WalletService\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-49800\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50480\n  Windows Web Proxy\n  Auto-Discovery Protocol (WPAD) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56173\n  Windows WebView\n  Elevation of Privilege Vulnerability\n  Important\n  7\n  No\n  No\n  EoP\n \n \n  CVE-2026-58632\n  Windows Win32 Kernel\n  Subsystem Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54107\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54986\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54112\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-54114\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50670\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50688\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50687\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  8.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-56176\n  Windows Win32k\n  Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-58628\n  Windows Wireless\n  Network Manager Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-50295\n  Windows Zero Trust DNS\n  Security Feature Bypass Vulnerability\n  Important\n  5.5\n  No\n  No\n  SFB\n \n \n  CVE-2026-50509\n  Wireless Wide Area\n  Network Service (WwanSvc) Elevation of Privilege Vulnerability\n  Important\n  7.8\n  No\n  No\n  EoP\n \n \n  CVE-2026-55945\n  Microsoft Edge\n  (Chromium-based) Information Disclosure Vulnerability\n  Moderate\n  4.2\n  No\n  No\n  Info\n \n \n  CVE-2026-45488\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  5.4\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-45489\n  Microsoft Edge\n  (Chromium-based) Spoofing Vulnerability\n  Moderate\n  6.5\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-55145\n  Outlook Copilot\n  Tampering Vulnerability\n  Moderate\n  6.3\n  No\n  No\n  Tampering\n \n \n  CVE-2026-56181\n  Windows Network\n  Address Translation (NAT) Spoofing Vulnerability\n  Moderate\n  8.3\n  No\n  No\n  Spoofing\n \n \n  CVE-2026-58597\n  Microsoft\n  Edge (Chromium-based) Spoofing Vulnerability\n  Low\n  4.3\n  No\n  No\n  Spoofing\n \n \n \n  \n  \n  \n  \n  \n  \n  \n \n \n\n\n\n\n\n\n\n\n\n\n\n\n  \n  \n\n\n\n\n\n\n  \n** Indicates this CVEs has already been resolved by Microsoft, and no further action is needed by the end user.\n&nbsp;\n&nbsp;\nI\u2019ll do my best to summarize everything else in this release, but no promises. I\u2019m only human after all.\n&nbsp;\nLooking at the remaining Critical-rated patches, Office is its own weather system: fourteen Word/Excel/PowerPoint/Office RCEs clustered at CVSS 7.8, plus five Windows Media Foundation RCEs. Outside of the Preview Pane attack vector, they are individually unremarkable; collectively, patch Office and reboot. Always reboot. We\u2019ve already mentioned DHCP some, but DHCP Server can't catch a break. Beyond the one already covered, add CVE-2026-56159, CVE-2026-48564, CVE-2026-50370, and DHCP Client cousin CVE-2026-54128. Five DHCP RCEs in one release. Rounding things out, Print Spooler (CVE-2026-58608), Windows TCP/IP (CVE-2026-54999), and a SQL Server RCE pair (CVE-2026-54117/54118) all receive patches, and all are rated a CVSS 8.8. VE-2026-55944 (Dynamics NAV/Business Central On-Prem RCE, 9.8) is the same deserialization flavor as the SharePoint pair; it\u2019s unauthenticated, network-reachable, and easy to overlook since it's not SharePoint. CVE-2026-48561 (Microsoft Copilot RCE, 9.6) and CVE-2026-50380 (Windows GDI+ RCE, 9.6) round out the near-top tier. Don't forget CVE-2026-55040, a SharePoint Security Feature Bypass (9.1) \u2014 patch it in the same pass as the SharePoint RCE pair since it's the same product family. Identity and infrastructure get hit too: CVE-2026-54121 (AD Certificate Services EoP, 8.8) and CVE-2026-50444 (WSUS EoP, 8.8). The obscure Reliable Multicast Transport Driver (RMCAST) takes two RCEs (CVE-2026-54982, CVE-2026-54995), and CVE-2026-50474 gives Remote Desktop Client its own RCE, separate from the RDP one already covered. The rest is a long tail: Defender RCE x2, GDI+ again, Windows Media x2, Secure Kernel Mode EoP x2, and a second Hyper-V EoP. You can consider these \u201cnormal\u201d as far as patch cadence goes.\nThat leaves us with 95 RCE to discuss. I would explain, but there is too much, so let me sum up. CVE-2026-55944 (Dynamics NAV/Business Central On-Prem, 9.8) is the same deserialization flavor as the SharePoint pair: unauthenticated, easy to miss since it's not SharePoint. CVE-2026-54990 (Remote Desktop Client), CVE-2026-49172 (Windows FTP Service), and CVE-2026-50447 (MSMQ) all hit 9.8 too, proof severity labels lag CVSS sometimes. CVE-2026-48561 (Copilot) and CVE-2026-50380 (GDI+) sit at 9.6.\nThe pattern worth watching: 14 Windows NTFS and 7 ReFS RCEs/ That makes 21 filesystem-driver bugs, an unusually large cluster suggesting a shared root cause. Microsoft Edge (Chromium-based) contributes 21 more that are genuinely Microsoft's to patch, not Chromium re-listing noise. Remote Desktop Client racks up a second and third RCE (CVE-2026-50474, CVE-2026-58594), and Windows Admin Center picks up two (CVE-2026-56196/56197) \u2014 WAC exposure keeps creeping into these releases. Exchange Server (CVE-2026-55005) and AD Domain Services (CVE-2026-49178) both land at 8.8.\nAnd because this release wouldn't be complete without it: CVE-2026-50663, an RCE in Age of Empires II: Definitive Edition. Yes, really. Patch your civilization anyway.\nThere are close to 260 EoP bugs in this month\u2019s release. Microsoft could have just published the EoPs and still had a record-setting month. As usual, most simply lead to local attackers executing their code at SYSTEM-level privileges or administrative privileges, so there\u2019s not much to add without further technical details about the bugs themselves. What\u2019s really frustrating is that 94 have no explicit privilege statement at all. Microsoft just says \u201celevate privileges\u201d with no detail. By my count, that leaves around 25 bugs to consider. Some don\u2019t elevate at all. The FAQ literally says the attacker just gets \u201cthe rights of the user running the affected application.\u201d That covers Win32k, Clip Service, Search Service, MSMQ, and SharePoint. A few get a Low-to-Medium integrity bump. There are also a couple that lead to downgraded service accounts or arbitrary file deletion, but nothing else I\u2019ve seen really stands out too much.\nThere are 20 Security Feature Bypass (SFB) bugs this month, and it's a genuinely mixed bag. CVE-2026-55040 leads at Critical, CVSS 9.1 as it\u2019s weak authentication in SharePoint Server. Patch it in the same pass as the SharePoint RCE pair since it's the same product. The AI-coding-tool trend continues: GitHub Copilot and Visual Studio Code and Visual Studio all land SFB bugs, mostly injection or path-traversal flavored. BitLocker is this month's lone publicly disclosed bug. It\u2019s not exploited yet, but public disclosure is a countdown clock, not a free pass. It requires physical access, as does the bug in Microsoft XML. The firmware/boot cluster is worth a second look: Secure Boot, Boot Loader, and Key Guard all touch the trust chain below the OS. Meaning, despite a low CVSS score, \u201cif this fails, nothing above it can be trusted\u201d stakes. Rounding out the SFB patches, there are two .NET SFBs, two Windows Kernel SFBs, and a DNS/Cryptographic Services bringing up the rear.\nThe July release includes 31Spoofing bugs this month, and we\u2019ve already covered the most important (Exchange). SharePoint Server accounts for another ten with almost all the same root cause: stored XSS letting an authenticated attacker spoof content in the browser. Microsoft Edge (Chromium-based) contributes fifteen more spanning access-control failures, SSRF, type confusion, and UI misrepresentation. All genuinely Microsoft's to patch, not re-listed Chromium noise. The remaining six round out the usual suspects: a Windows NAT spoofing bug reachable from an adjacent network, a Bing app flaw on iOS, a PowerBI Report Server XSS issue, a .NET output-encoding bug, and an AD FS spoofing flaw. None publicly disclosed, none exploited, but with SharePoint's history this year, don't let \"just Spoofing\" lull you into deprioritizing the patch cycle.\nOf 111 Information Disclosure bugs, the overwhelming majority of these simply result in info leaks consisting of unspecified memory contents or memory addresses. GitHub Copilot is the standout. Here, the bug insufficiently protected credentials, meaning actual secrets leak, not memory scraps. The Windows Admin Center flaw discloses data via improper authentication. A management console leaking to an unauthorized party is a bigger deal than it sounds. SharePoint uses SSRF to pull data server-side, and the Event Logging Service is a protection-mechanism failure, not a memory bug at all. Edge picks up three genuinely file-system-flavored disclosures \u2014 improper authorization, files/directories accessible to external parties, and link-following \u2014 plus Edge for Android exposing \u201cprivate personal information\u201d twice and two path-traversal bugs. The remaining 40+ are mostly one-line \u201cexposure of sensitive information to an unauthorized actor\u201d entries scattered across File Explorer, Push Notifications, Cryptographic Services, and Win32k.\nOnly 8 Tampering bugs this month, the smallest bucket, but a couple stand out. The top of the list is a WSUS bug, caused by an uncaught exception that lets an unauthenticated attacker tamper with the update service over the network. That\u2019s your patch-management infrastructure itself being the target, which always deserves extra attention. Windows CNG (the crypto API) picks up a missing-cryptographic-step flaw, and Windows DNS Client shows up three separate times across the list, twice for improper access control and once for missing authentication on a critical function. DNS resolution having this many tampering paths in one release is worth flagging as a pattern rather than three unrelated bugs. The one genuinely different entry is Outlook Copilot, described simply as vulnerable to \u201cmalicious uses\u201d enabling tampering over the network. That\u2019s a fantastically vague phrasing for an AI-assistant feature, continuing this year's running theme of Copilot-branded features showing up somewhere in every release. Finally, a .NET link-following bug and a WSL2 kernel race condition receive patches. Both require local/authorized access to trigger.\nStill with me? Good, because we have 35 DoS bugs to cover, and this is really an identity-infrastructure story more than a grab-bag. Active Directory Federation Services alone accounts for seven of them, all sitting at CVSS 7.5, all stack-based buffer overflows or infinite loops that let an unauthenticated attacker knock the service over the network.  The .NET ecosystem is the other big cluster: .NET, .NET Framework, and ASP.NET Core/OData contribute nine bugs combined, almost all \u201callocation of resources without limits or throttling\u201d. &nbsp;HTTP.sys and HTTP/2 pick up the same flavor. LSASS shows up twice, which is always worth a second look given what that process actually holds. Rounding out the list are patches for Windows DHCP Server, SMB Server, Secure Channel, Hyper-V, and IKE Protocol each take a single hit, mostly requiring authorized or adjacent-network access rather than being wide open to the internet.\nNo new advisories are being released this month.\nLooking Ahead\nThe next Patch Tuesday will be on August 11, just after Hacker Summer Camp in sunny Las Vegas. Should I survive the heat, I\u2019ll be back then to give you my full thoughts on the release \u2013 no matter how large it may be. Until then, stay safe, happy patching, and may all your reboots be smooth and clean!", "creation_timestamp": "2026-07-15T01:02:03.637566Z"}, {"uuid": "1d2b7b04-be89-4cfa-ad82-5c462aab1c3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/thehackernews/9453", "content": "\u26a1 Microsoft patched RoguePlanet weeks after the Defender flaw was publicly disclosed.\n\nCVE-2026-50656 affects the #Microsoft Malware Protection Engine and could let local attackers gain SYSTEM-level privileges, according to the researcher who disclosed it.\n\nFull story here \u2192 https://thehackernews.com/2026/07/microsoft-patches-rogueplanet-defender.html", "creation_timestamp": "2026-07-15T12:00:03.776492Z"}, {"uuid": "12ef5604-0ee9-4206-91d4-c9e0e74aa314", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/thehackernews/9270", "content": "\ud83d\udea8 Microsoft Defender zero-day RoguePlanet is now officially CVE-2026-50656.\n\nMicrosoft is preparing a patch for the Malware Protection Engine flaw, which can enable privilege escalation.\n\nA public PoC describes a race condition that may grant SYSTEM-level privileges.\n\nRead: https://thehackernews.com/2026/06/microsoft-confirms-rogueplanet-defender_02022423645.html", "creation_timestamp": "2026-07-15T12:00:04.593747Z"}, {"uuid": "847d3ebe-43d2-47b8-ad47-b61128cf02f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/information_security_channel/55544", "content": "Microsoft Patches Defender \u2018RoguePlanet\u2019 Vulnerability\nhttps://www.securityweek.com/microsoft-patches-defender-rogueplanet-vulnerability/\n\nThe privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.\nThe post Microsoft Patches Defender \u2018RoguePlanet\u2019 Vulnerability (https://www.securityweek.com/microsoft-patches-defender-rogueplanet-vulnerability/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2026-07-15T12:00:05.609505Z"}, {"uuid": "564da1f9-4c05-45c6-b0c9-2f2920a3f10f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/HackerNewscyber/3226", "content": "\u2708\ufe0f\u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0648\u0632 \u0635\u0641\u0631 \u00abRoguePlanet\u00bb \u062f\u0631 Microsoft Defender \u0631\u0627 \u0628\u0631\u0637\u0631\u0641 \u06a9\u0631\u062f\n\n\ud83c\udfa4\u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0648\u0635\u0644\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0648\u0632 \u0635\u0641\u0631 CVE-2026-50656 \u0645\u0648\u0633\u0648\u0645 \u0628\u0647 RoguePlanet \u0631\u0627 \u0628\u0631\u0627\u06cc Microsoft Defender \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f. \u0627\u06cc\u0646 \u0646\u0642\u0635 \u06a9\u0647 \u062a\u0648\u0633\u0637 \u067e\u0698\u0648\u0647\u0634\u06af\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u0627 \u0646\u0627\u0645 Nightmare Eclipse \u0627\u0641\u0634\u0627 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c \u0627\u0645\u06a9\u0627\u0646 \u0627\u0631\u062a\u0642\u0627\u06cc \u0633\u0637\u062d \u062f\u0633\u062a\u0631\u0633\u06cc \u0645\u0647\u0627\u062c\u0645 \u0628\u0647 SYSTEM \u062f\u0631 \u0648\u06cc\u0646\u062f\u0648\u0632 10 \u0648 11 \u0631\u0627 \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0631\u062f.\n\n\ud83c\udfa5\u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc Microsoft Malware Protection Engine \u0646\u0633\u062e\u0647 1.1.26060.3008 \u0628\u0631\u0637\u0631\u0641 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0627\u0641\u0634\u0627\u06cc \u0627\u06cc\u0646 \u0646\u0642\u0635 \u062f\u0631 \u0627\u062f\u0627\u0645\u0647 \u0627\u062e\u062a\u0644\u0627\u0641\u0627\u062a \u0645\u06cc\u0627\u0646 \u0627\u06cc\u0646 \u067e\u0698\u0648\u0647\u0634\u06af\u0631 \u0648 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0628\u0631 \u0633\u0631 \u0631\u0648\u0646\u062f \u0627\u0641\u0634\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0648 \u0628\u0631\u0646\u0627\u0645\u0647 \u0628\u0627\u06af\u200c\u0628\u0627\u0646\u062a\u06cc \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0635\u0648\u0631\u062a \u06af\u0631\u0641\u062a. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0648 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627 \u0628\u0627\u06cc\u062f \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u06a9\u0646\u0646\u062f \u06a9\u0647 \u0645\u0648\u062a\u0648\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc Defender \u0622\u0646\u200c\u0647\u0627 \u0628\u0647 \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a.\n\n\u2708\ufe0f @HackerNewsCyber", "creation_timestamp": "2026-07-15T13:00:05.475014Z"}, {"uuid": "b63a78eb-463f-4409-8b0f-f36acfdda339", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mqpiu4gk4k2o", "content": "\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u3001Defender\u306bRoguePlanet\u306e\u30bc\u30ed\u30c7\u30a4\u8106\u5f31\u6027\u304c\u3042\u308b\u3053\u3068\u3092\u8a8d\u3081\u3001\u30d1\u30c3\u30c1\u3092\u958b\u767a\u4e2d\n\n\u30de\u30a4\u30af\u30ed\u30bd\u30d5\u30c8\u306f\u3001Microsoft Defender\u306b\u5f71\u97ff\u3092\u4e0e\u3048\u308bRoguePlanet\u306e\u30bc\u30ed\u30c7\u30a4\u8106\u5f31\u6027\uff08CVE-2026-50656\u3001CVSS\u30b9\u30b3\u30a27.8\uff09\u3092\u8a8d\u3081\u307e\u3057\u305f\u3002\u3053\u306e\u8106\u5f31\u6027\u306b\u3088\u308a\u3001Microsoft\u30de\u30eb\u30a6\u30a7\u30a2\u5bfe\u7b56\u30a8\u30f3\u30b8\u30f3\u3092\u4ecb\u3057\u3066\u6a29\u9650\u6607\u683c\u304c\u53ef\u80fd\u306b\u306a\u308a\u307e\u3059\u3002\u540c\u793e\u306f\u3001\u3053\u306e\u554f\u984c\u3092\u8a8d\u8b58\u3057\u3066\u304a\u308a\u3001\u8106\u5f31\u6027\u306b\u5bfe\u51e6\u3057\u5f71\u97ff\u3092\u53d7\u3051\u308b\u30b7\u30b9\u30c6\u30e0\u3092\u4fdd\u8b77\u3059\u308b\u305f\u3081\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u66f4\u65b0\u30d7\u30ed\u30b0\u30e9\u30e0\u3092\u7a4d\u6975\u7684\u306b\u958b\u767a\u3057\u3066\u3044\u308b\u3068\u8ff0\u3079\u3066\u3044\u307e\u3059\u3002\n\n\u5148\u9031\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7814\u7a76\u8005\u306e Chaotic Eclipse\uff08\u5225\u540dNig...", "creation_timestamp": "2026-07-15T19:55:26.532650Z"}, {"uuid": "a7c9cd9d-ff11-4a4c-aba0-3125818ef2e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "published-proof-of-concept", "source": "https://t.me/thehackernews/9270", "content": "\ud83d\udea8 Microsoft Defender zero-day RoguePlanet is now officially CVE-2026-50656.\n\nMicrosoft is preparing a patch for the Malware Protection Engine flaw, which can enable privilege escalation.\n\nA public PoC describes a race condition that may grant SYSTEM-level privileges.\n\nRead: https://thehackernews.com/2026/06/microsoft-confirms-rogueplanet-defender_02022423645.html", "creation_timestamp": "2026-07-16T00:00:10.363176Z"}, {"uuid": "0aa84217-7592-4870-a630-1c35f818440f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/information_security_channel/55544", "content": "Microsoft Patches Defender \u2018RoguePlanet\u2019 Vulnerability\nhttps://www.securityweek.com/microsoft-patches-defender-rogueplanet-vulnerability/\n\nThe privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.\nThe post Microsoft Patches Defender \u2018RoguePlanet\u2019 Vulnerability (https://www.securityweek.com/microsoft-patches-defender-rogueplanet-vulnerability/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2026-07-16T00:00:08.978065Z"}, {"uuid": "091550ae-83fd-461a-bb3f-224273634c39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/HackerNewscyber/3226", "content": "\u2708\ufe0f\u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0648\u0632 \u0635\u0641\u0631 \u00abRoguePlanet\u00bb \u062f\u0631 Microsoft Defender \u0631\u0627 \u0628\u0631\u0637\u0631\u0641 \u06a9\u0631\u062f\n\n\ud83c\udfa4\u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0648\u0635\u0644\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0631\u0648\u0632 \u0635\u0641\u0631 CVE-2026-50656 \u0645\u0648\u0633\u0648\u0645 \u0628\u0647 RoguePlanet \u0631\u0627 \u0628\u0631\u0627\u06cc Microsoft Defender \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f. \u0627\u06cc\u0646 \u0646\u0642\u0635 \u06a9\u0647 \u062a\u0648\u0633\u0637 \u067e\u0698\u0648\u0647\u0634\u06af\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u0627 \u0646\u0627\u0645 Nightmare Eclipse \u0627\u0641\u0634\u0627 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c \u0627\u0645\u06a9\u0627\u0646 \u0627\u0631\u062a\u0642\u0627\u06cc \u0633\u0637\u062d \u062f\u0633\u062a\u0631\u0633\u06cc \u0645\u0647\u0627\u062c\u0645 \u0628\u0647 SYSTEM \u062f\u0631 \u0648\u06cc\u0646\u062f\u0648\u0632 10 \u0648 11 \u0631\u0627 \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0631\u062f.\n\n\ud83c\udfa5\u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc Microsoft Malware Protection Engine \u0646\u0633\u062e\u0647 1.1.26060.3008 \u0628\u0631\u0637\u0631\u0641 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0627\u0641\u0634\u0627\u06cc \u0627\u06cc\u0646 \u0646\u0642\u0635 \u062f\u0631 \u0627\u062f\u0627\u0645\u0647 \u0627\u062e\u062a\u0644\u0627\u0641\u0627\u062a \u0645\u06cc\u0627\u0646 \u0627\u06cc\u0646 \u067e\u0698\u0648\u0647\u0634\u06af\u0631 \u0648 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0628\u0631 \u0633\u0631 \u0631\u0648\u0646\u062f \u0627\u0641\u0634\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0648 \u0628\u0631\u0646\u0627\u0645\u0647 \u0628\u0627\u06af\u200c\u0628\u0627\u0646\u062a\u06cc \u0627\u06cc\u0646 \u0634\u0631\u06a9\u062a \u0635\u0648\u0631\u062a \u06af\u0631\u0641\u062a. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0648 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627 \u0628\u0627\u06cc\u062f \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u06a9\u0646\u0646\u062f \u06a9\u0647 \u0645\u0648\u062a\u0648\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc Defender \u0622\u0646\u200c\u0647\u0627 \u0628\u0647 \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a.\n\n\u2708\ufe0f @HackerNewsCyber", "creation_timestamp": "2026-07-16T00:00:11.328173Z"}, {"uuid": "44f62611-48ea-4ac2-a258-45ae7ba79112", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50656", "type": "seen", "source": "https://t.me/thehackernews/9453", "content": "\u26a1 Microsoft patched RoguePlanet weeks after the Defender flaw was publicly disclosed.\n\nCVE-2026-50656 affects the #Microsoft Malware Protection Engine and could let local attackers gain SYSTEM-level privileges, according to the researcher who disclosed it.\n\nFull story here \u2192 https://thehackernews.com/2026/07/microsoft-patches-rogueplanet-defender.html", "creation_timestamp": "2026-07-16T00:00:19.511968Z"}]}