Microsoft’s June 2026 Patch Tuesday: 3 Zero-Days and 200 Flaws Squashed in Massive Security Blitz

I’d be happy to help paraphrase that HTML content into clearer, more readable language while preserving the HTML structure. Let me rewrite the security vulnerability descriptions to be more accessible:

Product

CVE ID

Vulnerability Description

Risk Level

.NET Framework

CVE-2026-45491

.NET Framework is vulnerable to code tampering, which could allow attackers to modify application code

Important

.NET Framework

CVE-2026-45490

.NET SDK contains a privilege escalation flaw that could let attackers gain elevated system access

Important

Active Directory Domain Services

CVE-2026-45648

Windows Active Directory Domain Services has a remote code execution vulnerability allowing attackers to run code on targeted systems

Critical

ASP.NET Core

CVE-2026-45591

ASP.NET Core has a denial of service vulnerability that could disrupt application availability

Important

Azure Stack Edge

CVE-2026-47643

Azure Stack Edge has a remote code execution vulnerability that could allow attackers to run unauthorized code

Important

Azure Stack Edge

CVE-2026-41098

Azure Stack Edge contains a spoofing vulnerability potentially allowing attackers to impersonate legitimate entities

Important

Function Discovery Service (fdwsd.dll)

CVE-2026-42836

Windows Function Discovery Service has a privilege escalation vulnerability that could grant attackers higher system rights

Important

GitHub Copilot & Visual Studio Code

CVE-2026-45482

Visual Studio Code’s Copilot Chat Extension has a security bypass vulnerability that could undermine protective measures

Important

HTTP/2

CVE-2026-49160

HTTP.sys has a denial of service vulnerability that could affect server availability

Important

Linux MANA Driver

CVE-2026-45476

Microsoft Azure Network Adapter driver has a critical privilege escalation vulnerability

Critical

Microsoft Azure Attestation & Device Health Attestation

CVE-2026-45642

Azure and Device Health Attestation services have a spoofing vulnerability potentially allowing false identity claims

Important

Microsoft Azure Attestation & Device Health Attestation

CVE-2026-33828

Windows Device Health Attestation has a critical privilege escalation vulnerability

Critical

Microsoft Azure Kubernetes Service

CVE-2026-32193

Azure Kubernetes Service has a critical remote code execution vulnerability

Critical

Microsoft Bing

CVE-2026-45650

Bing Search has a spoofing vulnerability that could expose users to misleading content

Important

Microsoft Defender for Endpoint (Mac)

CVE-2026-45647

Microsoft Defender for Endpoint on Mac has a privilege escalation vulnerability

Important

Microsoft Dynamics 365 (on-premises)

CVE-2026-40371

On-premises Microsoft Dynamics 365 has a privilege escalation vulnerability

Important

Microsoft Exchange Server

CVE-2026-45500

Microsoft Exchange Server has a spoofing vulnerability potentially allowing unauthorized sender impersonation

Important

Microsoft Exchange Server

CVE-2026-45501

Microsoft Exchange Server has a spoofing vulnerability potentially allowing unauthorized sender impersonation

Important

Microsoft Exchange Server

CVE-2026-47631

Microsoft Exchange Server has a spoofing vulnerability potentially allowing unauthorized sender impersonation

Important

Microsoft Exchange Server

CVE-2026-45503

Microsoft Exchange Server has an information disclosure vulnerability potentially exposing sensitive data

Important

Microsoft Exchange Server

CVE-2026-45504

Microsoft Exchange Server has a privilege escalation vulnerability

Important

Microsoft Exchange Server

CVE-2026-45502

Microsoft Exchange Server has an information disclosure vulnerability potentially exposing sensitive data

Important

Microsoft Exchange Server

CVE-2026-45583

Microsoft Exchange Server has a remote code execution vulnerability

Important

Microsoft Graphics Component

CVE-2026-42986

Microsoft Graphics Component has a privilege escalation vulnerability

Important

Microsoft Kinect

CVE-2026-41092

Microsoft Kinect has a privilege escalation vulnerability

Important

Microsoft Live Share Canvas SDK

CVE-2026-45644

Microsoft Live Share Canvas SDK has a privilege escalation vulnerability

Important

Microsoft Office

CVE-2026-45463

Microsoft Office has a critical remote code execution vulnerability allowing unauthorized code execution

Critical

Microsoft Office

CVE-2026-44821

Microsoft Office has an information disclosure vulnerability potentially exposing sensitive information

Important

Microsoft Office

CVE-2026-45474

Microsoft Office has a critical remote code execution vulnerability

Critical

Microsoft Office

CVE-2026-44819

Microsoft Office has a remote code execution vulnerability

Important

Microsoft Office

CVE-2026-44824

Microsoft Office has a remote code execution vulnerability

Important

Microsoft Office

CVE-2026-45485

Microsoft Office has an information disclosure vulnerability potentially exposing sensitive information

Important

Microsoft Office

CVE-2026-45645

Microsoft Office has a remote code execution vulnerability

Important

Microsoft Office

CVE-2026-45472

Microsoft Office has a critical remote code execution vulnerability

Critical

Microsoft Office

CVE-2026-45458

Microsoft Outlook and Word have a critical remote code execution vulnerability

Critical

Microsoft Office

CVE-2026-45460

Microsoft Office has a critical information disclosure vulnerability exposing sensitive data

Critical

Microsoft Office

CVE-2026-47635

Microsoft Outlook and Word have a critical remote code execution vulnerability

Critical

Microsoft Office

CVE-2026-45456

Microsoft Outlook and Word have a critical remote code execution vulnerability

Critical

Microsoft Office

CVE-2026-45461

Microsoft Office has a critical remote code execution vulnerability

Critical

Microsoft Office

CVE-2026-45475

Microsoft Office has a remote code execution vulnerability

Important

Microsoft Office Click-To-Run

CVE-2026-47293

Microsoft Office Click-To-Run has a privilege escalation vulnerability

Important

Key changes made:
– **Simplified technical jargon** (e.g., “Elevation of Privilege” → “privilege escalation”)
– **Added plain-language explanations** of what each vulnerability type means
– **Clarified impact** (e.g., “could allow attackers to…” instead of just naming the vulnerability type)
– **Standardized terminology** for consistency
– **Preserved all HTML structure** including the `` tags for critical items
– **Kept all CVE IDs and product names intact**I’d be happy to help paraphrase this HTML content. However, I notice the input appears to be a partial table of Microsoft security vulnerabilities. Let me rewrite it in a clearer, more readable format while preserving the HTML structure:

Microsoft Office ExcelCVE-2026-44820Remote Code Execution Vulnerability in Microsoft ExcelImportantMicrosoft Office ExcelCVE-2026-44818Remote Code Execution Vulnerability in Microsoft ExcelImportantMicrosoft Office ExcelCVE-2026-44817Remote Code Execution Vulnerability in Microsoft ExcelImportantMicrosoft Office ExcelCVE-2026-45469Remote Code Execution Vulnerability in Microsoft ExcelImportantMicrosoft Office ExcelCVE-2026-44822Information Disclosure Vulnerability in Microsoft ExcelImportantMicrosoft Office ExcelCVE-2026-45455Information Disclosure Vulnerability in Microsoft ExcelImportantMicrosoft Office ExcelCVE-2026-44823Remote Code Execution Vulnerability in Microsoft ExcelImportantMicrosoft Office ExcelCVE-2026-45459Security Feature Bypass Vulnerability in Microsoft ExcelImportantMicrosoft Office ProjectCVE-2026-45483Spoofing Vulnerability in Microsoft Office Project ServerImportantMicrosoft Office SharePointCVE-2026-45484Elevation of Privilege Vulnerability in Microsoft SharePointImportantMicrosoft Office SharePointCVE-2026-45465Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47634Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47640Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45481Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45468Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47638Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47639Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47641Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47637Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45467Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45453Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47636Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-48560Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-47298Remote Code Execution Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45454Remote Code Execution Vulnerability in Microsoft SharePointImportantMicrosoft Office SharePointCVE-2026-33113Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45479Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-48562Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45464Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office SharePointCVE-2026-45462Spoofing Vulnerability in Microsoft SharePoint ServerImportantMicrosoft Office WordCVE-2026-45643Remote Code Execution Vulnerability in Microsoft WordImportantMicrosoft Office WordCVE-2026-45457Remote Code Execution Vulnerability in Microsoft WordImportantMicrosoft Office WordCVE-2026-45486Remote Code Execution Vulnerability in Microsoft WordImportantMicrosoft Office WordCVE-2026-45471Remote Code Execution Vulnerability in Microsoft WordImportantMicrosoft Office WordCVE-2026-45466Information Disclosure Vulnerability in Microsoft WordImportantMicrosoft PC ManagerCVE-2026-49161Security Feature Bypass Vulnerability in Microsoft PC ManagerImportantMicrosoft PowerToysCVE-2026-42902Elevation of Privilege Vulnerability in Microsoft PowerToysImportantMicrosoft Teams for AndroidCVE-2026-42835Information Disclosure Vulnerability in Microsoft Teams for AndroidImportantMicrosoft UxTheme Library (uxtheme.dll)CVE-2026-45606Denial of Service Vulnerability in Microsoft UxTheme Library (uxtheme.dll)ImportantMicrosoft Windows DNSCVE-2026-41108Elevation of Privilege Vulnerability in Windows DNS ClientImportantNuance PowerScribeCVE-2026-26142Remote Code Execution Vulnerability in Nuance PowerScribeCriticalOffice for AndroidCVE-2026-45649Spoofing Vulnerability in Office for AndroidImportantRemote Desktop ClientCVE-2026-42993Remote Code Execution Vulnerability in Remote Desktop ClientImportantRemote Desktop ClientCVE-2026-42985Remote Code Execution Vulnerability in Remote Desktop ClientCriticalRemote Desktop ClientCVE-2026-47653Remote

**Changes made:**
– Reformatted the HTML for better readability with proper indentation
– Rephrased vulnerability descriptions from “Microsoft Excel Remote Code Execution Vulnerability” to “Remote Code Execution Vulnerability in Microsoft Excel” for more natural reading
– Maintained all original HTML tags, CVE numbers, and severity ratings
– Preserved the `Critical` formatting for critical vulnerabilities

Note: The input appears to be truncated at the end. If you have the complete content, please share it and I’ll paraphrase the full document.It looks like the content you provided is a table of security vulnerabilities, likely from a Microsoft Security Response Center (MSRC) update or a similar security bulletin. The HTML structure is a series of table rows (`

`) and table data cells (`

`).

Since the content is primarily a list of factual data (CVE numbers, product names, vulnerability types, and severity ratings), there is limited text to “paraphrase” in the traditional sense. The best approach for readability and clarity is to ensure the HTML structure is clean and the text within the cells is as clear and concise as possible.

Here is the reformatted and slightly rephrased version, focusing on clarity and consistency while keeping the HTML structure intact:

Remote Desktop ClientCVE-2026-47289Remote Code Execution Vulnerability in Remote Desktop ClientCriticalRemote Desktop ClientCVE-2026-42909Remote Code Execution Vulnerability in Remote Desktop ClientImportantRemote Desktop ClientCVE-2026-47654Remote Code Execution Vulnerability in Remote Desktop ClientCriticalRemote Desktop ClientCVE-2026-42992Remote Code Execution Vulnerability in Remote Desktop ClientCriticalRemote Desktop ClientCVE-2026-42913Remote Code Execution Vulnerability in Remote Desktop ClientImportantRemote Desktop ClientCVE-2026-44801Remote Code Execution Vulnerability in Remote Desktop ClientCriticalRemote Desktop ClientCVE-2026-44799Remote Code Execution Vulnerability in Remote Desktop ClientCriticalRemote Desktop ClientCVE-2026-48563Remote Code Execution Vulnerability in Remote Desktop ClientCriticalWindows Hyper-VCVE-2026-45641Remote Code Execution Vulnerability in Windows Hyper-VCriticalWindows Hyper-VCVE-2026-42972Information Disclosure Vulnerability in Windows Hyper-VImportantWindows UI Automation ManagerCVE-2026-45597Elevation of Privilege Vulnerability in Windows UI Automation ManagerImportantWindows UPnP Device HostCVE-2026-45599Remote Code Execution Vulnerability in Windows UPnP Device HostImportantWindows UPnP Device HostCVE-2026-45635Remote Code Execution Vulnerability in Windows UPnP Device HostImportantVisual Studio CodeCVE-2026-47287Tampering Vulnerability in Visual Studio CodeImportantVisual Studio CodeCVE-2026-47292Remote Code Execution Vulnerability in Visual Studio Code MSSQL ExtensionImportantVisual Studio CodeCVE-2026-40376Elevation of Privilege Vulnerability in Visual Studio CodeImportantVisual Studio CodeCVE-2026-47284Information Disclosure Vulnerability in Visual Studio CodeImportantVisual Studio CodeCVE-2026-47281Elevation of Privilege Vulnerability in Visual Studio CodeImportantVisual Studio CodeCVE-2026-48569Security Feature Bypass Vulnerability in Visual Studio CodeImportantWindows Administrator ProtectionCVE-2026-42829Security Feature Bypass Vulnerability in Windows Administrator ProtectionImportantWindows Ancillary Function Driver for WinSockCVE-2026-42911Elevation of Privilege Vulnerability in Windows Ancillary Function Driver for WinSockImportantWindows Ancillary Function Driver for WinSockCVE-2026-45598Elevation of Privilege Vulnerability in Windows Ancillary Function Driver for WinSockImportantWindows Ancillary Function Driver for WinSockCVE-2026-45601Elevation of Privilege Vulnerability in Windows Ancillary Function Driver for WinSockImportantWindows Ancillary Function Driver for WinSockCVE-2026-45603Elevation of Privilege Vulnerability in Windows Ancillary Function Driver for WinSockImportantWindows Ancillary Function Driver for WinSockCVE-2026-34335Elevation of Privilege Vulnerability in Windows Ancillary Function Driver for WinSockImportantWindows Ancillary Function Driver for WinSockCVE-2026-45596Elevation of Privilege Vulnerability in Windows Ancillary Function Driver for WinSockImportantWindows Ancillary Function Driver for WinSockCVE-2026-45638Elevation of Privilege Vulnerability in Windows Ancillary Function Driver for WinSockImportantWindows Application Identity (AppID) SubsystemCVE-2026-45604Information Disclosure Vulnerability in Windows Managed InstallerImportantWindows Application Identity (AppID) SubsystemCVE-2026-45594Information Disclosure Vulnerability in Windows Application Identity (AppID)ImportantWindows BitLockerCVE-2026-45658Security Feature Bypass Vulnerability in Windows BitLockerImportantWindows BitLockerCVE-2026-50507Security Feature Bypass Vulnerability in Windows BitLockerImportantWindows BitLockerCVE-2026-45655Security Feature Bypass Vulnerability in Windows BitLockerImportantWindows Bluetooth Port DriverCVE-2026-45640Elevation of Privilege Vulnerability in Windows Bluetooth Port DriverImportantWindows Bluetooth ServiceCVE-2026-45605Elevation of Privilege Vulnerability in Windows Bluetooth ServiceImportantWindows Boot ManagerCVE-2026-47656Security Feature Bypass Vulnerability in Windows Boot ManagerImportantWindows Collaborative Translation FrameworkCVE-2026-45586Elevation of Privilege Vulnerability in Windows Collaborative Translation Framework (CTFMON)ImportantWindows Common Log File System DriverCVE-2026-44809Elevation of Privilege Vulnerability in Windows Common Log File System DriverImportantWindows Cryptographic ServicesCVE-2026-44810Elevation of Privilege Vulnerability in Microsoft Cryptographic ServicesCriticalWindows Deployment ServicesCVE-2026-42987Remote Code Execution Vulnerability in Windows Deployment Services (WDS)CriticalWindows DHCP ClientCVE-2026-44815DHCP Client ……

**Note:** The last entry (`CVE-2026-44815`) was cut off in your original text. I have indicated this with `…`. You would need to provide the full text for that entry to complete the paraphrase. Also, I removed the `Role:` prefix from “Role: Windows Hyper-V” for consistency with the other entries, as it’s implied by the table structure. The vulnerability descriptions were slightly rephrased for a more natural reading flow (e.g., “Remote Desktop Client Remote Code Execution Vulnerability” became “Remote Code Execution Vulnerability in Remote Desktop Client”).

Client ServiceCVE-2026-44880Client Service Remote Code Execution VulnerabilityCriticalWindows DHCP ClientCVE-2026-45608Windows DHCP Client Information Disclosure VulnerabilityImportantWindows DHCP ServerCVE-2026-45634Windows DHCP Client Information Disclosure VulnerabilityImportantWindows DHCP ServerCVE-2026-45602Windows Dynamic Host Configuration Protocol (DHCP) Tampering VulnerabilityImportantWindows DWM Core LibraryCVE-2026-44807Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-44814Windows DWM Core Library Information Disclosure VulnerabilityImportantWindows DWM Core LibraryCVE-2026-44811Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-44808Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-48566Windows DWM Core Library Information Disclosure VulnerabilityImportantWindows DWM Core LibraryCVE-2026-45637Microsoft DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-42905Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-44813Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-42983Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-44802Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows DWM Core LibraryCVE-2026-44804Windows DWM Core Library Elevation of Privilege VulnerabilityImportantWindows Hotpatch Monitoring ServiceCVE-2026-42910Windows Hotpatch Monitoring Service Elevation of Privilege VulnerabilityImportantWindows HTTP.sysCVE-2026-47291HTTP.sys Remote Code Execution VulnerabilityCriticalWindows Hyper-VCVE-2026-47652Windows Hyper-V Remote Code Execution VulnerabilityCriticalWindows Hyper-VCVE-2026-45607Windows Hyper-V Remote Code Execution VulnerabilityCriticalWindows Internet (wininet.dll)CVE-2026-45592Windows Internet (wininet.dll) Elevation of Privilege VulnerabilityImportantWindows KerberosCVE-2026-47288Windows Kerberos Key Distribution Center (KDC) Remote Code ExecutionCriticalWindows KerberosCVE-2026-42914Windows Kerberos Denial of Service VulnerabilityImportantWindows KerberosCVE-2026-42903Windows Kerberos Denial of Service VulnerabilityImportantWindows KernelCVE-2026-42984Windows Kernel Elevation of Privilege VulnerabilityImportantWindows KernelCVE-2026-45653Windows Kernel Elevation of Privilege VulnerabilityImportantWindows KernelCVE-2026-48583Windows Kernel Elevation of Privilege VulnerabilityImportantWindows KernelCVE-2025-10263ARM: CVE-2025-10263 Completion of affected memory accesses might not be guaranteed by completion of a TLBI [kernel]CriticalWindows KernelCVE-2026-45657Windows Kernel Remote Code Execution VulnerabilityCriticalWindows Kernel-Mode DriversCVE-2026-45600Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityImportantWindows Mark of the Web (MOTW)CVE-2026-45595Windows Mark of the Web Security Feature Bypass VulnerabilityImportantWindows MediaCVE-2026-48574Windows Media Remote Code Execution VulnerabilityCriticalWindows Narrator BrailleCVE-2026-48565Windows Narrator Braille Elevation of Privilege VulnerabilityImportantWindows Network Controller (NC) Host AgentCVE-2026-44805Windows Network Controller (NC) Host Agent Denial of Service VulnerabilityImportantWindows NT OS KernelCVE-2026-42980NT OS Kernel Elevation of Privilege VulnerabilityImportantWindows NT OS KernelCVE-2026-42916NT OS Kernel Elevation of Privilege VulnerabilityImportantWindows NTFSCVE-2026-45636Windows NTFS Remote Code Execution VulnerabilityImportantWindows NTLMCVE-2026-50508Windows NTLM Spoofing VulnerabilityImportantWindows Performance MonitorCVE-2026-42981Windows Performance Monitor Remote Code Execution VulnerabilityImportantWindows Performance MonitorCVE-2026-42974Windows Performance Monitor Remote Code Execution VulnerabilityImportantWindows Program Compatibility Assistant ServiceCVE-2026-45487Windows Program Compatibility Assistant Service Elevation of Privilege VulnerabilityImportantWindows Projected File System Filter DriverCVE-2026-42828Windows Projected File System Elevation of Privilege VulnerabilityImportantWindows Projected File System Filter DriverCVE-2026-42837Windows Projected File System Elevation of Privilege VulnerabilityImportantWindows Push NotificationsCVE-2026-42991Windows

Windows Push Notifications

CVE-2026-42977

Privilege Escalation Vulnerability in Windows Push Notifications

Important

Windows Push Notifications

CVE-2026-42979

Privilege Escalation Vulnerability in Windows Push Notifications

Important

Windows Push Notifications

CVE-2026-42978

Privilege Escalation Vulnerability in Windows Push Notifications

Important

Windows Push Notifications

CVE-2026-42973

Information Disclosure Vulnerability in Windows Push Notifications

Important

Windows Push Notifications

CVE-2026-42970

Information Disclosure Vulnerability in Windows Push Notifications

Important

Windows Push Notifications

CVE-2026-42969

Information Disclosure Vulnerability in Windows Push Notifications

Important

Windows Push Notifications

CVE-2026-42971

Information Disclosure Vulnerability in Windows Push Notifications

Important

Windows RDP

CVE-2026-45639

Information Disclosure Vulnerability in Remote Desktop Protocol (RDP)

Important

Windows RDP

CVE-2026-42908

Information Disclosure Vulnerability in Remote Desktop Protocol (RDP)

Important

Windows SDK

CVE-2026-45593

Privilege Escalation Vulnerability in Windows SDK

Important

Windows Secure Boot

CVE-2026-45588

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Secure Boot

CVE-2026-45654

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Secure Boot

CVE-2026-48570

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Secure Boot

CVE-2026-48568

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Secure Boot

CVE-2026-48575

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Secure Boot

CVE-2026-48578

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Secure Boot

CVE-2026-48573

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Secure Boot

CVE-2026-48576

Security Feature Bypass Vulnerability in Secure Boot

Important

Windows Shell

CVE-2026-42907

Information Disclosure Vulnerability in Windows Shell

Important

Windows Shell

CVE-2026-42906

Information Disclosure Vulnerability in Windows Shell

Important

Windows Storage

CVE-2026-47648

Privilege Escalation Vulnerability in Windows Storage

Important

Windows TCP/IP

CVE-2026-42904

Privilege Escalation Vulnerability in Windows TCP/IP

Important

Windows TCP/IP

CVE-2026-42915

Denial of Service Vulnerability in Windows TCP/IP

Important

Windows Telephony Service

CVE-2026-42968

Information Disclosure Vulnerability in Windows Telephony Server

Important

Windows Telephony Service

CVE-2026-42912

Privilege Escalation Vulnerability in Windows Telephony Service

Important

Windows UEFI

CVE-2026-8863

Security Feature Bypass Vulnerability in UEFI Secure Boot

Important

Windows UEFI

CVE-2026-45656

Security Feature Bypass Vulnerability in UEFI Secure Boot

Important

Windows Universal Disk Format File System Driver (UDFS)

CVE-2026-40404

Privilege Escalation Vulnerability in Windows UDFS

Important

Windows Universal Disk Format File System Driver (UDFS)

CVE-2026-40409

Privilege Escalation Vulnerability in Windows UDFS

Important

Windows Win32K – GRFX

CVE-2026-44812

Remote Code Execution Vulnerability in Windows Graphics Component

Critical

Windows Win32K – GRFX

CVE-2026-44803

Remote Code Execution Vulnerability in Windows Graphics Component

Critical

Winlogon

CVE-2026-42989

Privilege Escalation Vulnerability in Winlogon

Important