Close Menu
Wednesday, May 13
Market Data
Tech

Microsoft May 2026 Patch Tuesday Addresses 120 Vulnerabilities, No Zero-Day Threats

CR Today TeamBy Updated:No Comments2 Mins Read
Microsoft may 2026 patch tuesday addresses 120 vulnerabilities, no zero day
Windows 10 11 May 2026 Patch Tuesday fixes several critical flaws many important no zero daysWindows, computers and Technology

Vulnerabilities Overview

This article provides a summary of various vulnerabilities identified in Microsoft products, highlighting their associated CVE IDs, titles, and severity levels. Each entry indicates a potential security risk affecting different software components.

.NET Vulnerabilities

Several vulnerabilities have been noted in the .NET framework, including:

  • CVE-2026-35433 – .NET Elevation of Privilege Vulnerability (Severity: Important)
  • CVE-2026-32177 – .NET Elevation of Privilege Vulnerability (Severity: Important)
  • CVE-2026-32175 – .NET Core Tampering Vulnerability (Severity: Important)

Azure Product Vulnerabilities

Multiple vulnerabilities are also present in various Azure products, summarized as follows:

  • CVE-2026-40381 – Azure Connected Machine Agent Elevation of Privilege Vulnerability (Severity: Important)
  • CVE-2026-42823 – Azure Logic Apps Elevation of Privilege Vulnerability (Severity: Important)
  • CVE-2026-33833 – Azure Machine Learning Notebook Spoofing Vulnerability (Severity: Important)

Microsoft Office Vulnerabilities

Numerous vulnerabilities have been discovered within Microsoft Office applications:

  • CVE-2026-42831 – Microsoft Office Remote Code Execution Vulnerability (Severity: Critical)
  • CVE-2026-40358 – Microsoft Office Remote Code Execution Vulnerability (Severity: Critical)
  • CVE-2026-40361 – Microsoft Word Remote Code Execution Vulnerability (Severity: Critical)

Microsoft Teams and GitHub Copilot Vulnerabilities

Security flaws extend to collaborative tools like Microsoft Teams and GitHub Copilot:

  • CVE-2026-32185 – Microsoft Teams Spoofing Vulnerability (Severity: Important)
  • CVE-2026-41109 – GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability (Severity: Important)

Critical Remote Code Execution Vulnerabilities in Windows

Several critical vulnerabilities affecting Windows components are highlighted below:

  • CVE-2026-41089 – Windows Netlogon Remote Code Execution Vulnerability (Severity: Critical)
  • CVE-2026-40369 – Windows Kernel Elevation of Privilege Vulnerability (Severity: Important)

Hyper-V and Remote Desktop Vulnerabilities

Additional vulnerabilities impacting virtualization and remote services include:

  • CVE-2026-40402 – Windows Hyper-V Elevation of Privilege Vulnerability (Severity: Critical)
  • CVE-2026-40398 – Windows Remote Desktop Services Elevation of Privilege Vulnerability (Severity: Important)
ipiranha

Related Posts

Add A Comment
Leave A Reply