Microsoft’s June 2026 Patch Tuesday updates repair roughly 200 vulnerabilities found within the firm’s merchandise.
Not one of the flaws addressed this month seems to have been exploited within the wild, however three points have been publicly disclosed earlier than Microsoft patched them.
One among them is CVE-2026-49160, described as a denial-of-service (DoS) problem affecting Home windows. This vulnerability is expounded to HTTP2/Bomb, an assault approach that would have an effect on lots of of 1000’s of internet sites, and which can be utilized to knock internet servers offline in seconds.
One other disclosed vulnerability is CVE-2026-50507, a Home windows BitLocker safety bypass that may enable an attacker with bodily entry to the focused system to entry encrypted knowledge.
The safety gap could also be associated to YellowKey, one of many a number of exploits launched by a researcher recognized on-line as Chaotic Eclipse and Nightmare Eclipse, who started leaking PoC code after a disagreement with Microsoft. A number of of the exploits leaked by the researcher have been exploited within the wild.
The third publicly disclosed vulnerability patched by Microsoft this month is CVE-2026-45586, a Home windows Collaborative Translation Framework bug that may be exploited to raise privileges to System. An nameless researcher reported the weak spot to the seller.
All three publicly disclosed points have been assigned an ‘exploitation extra possible’ exploitability evaluation by Microsoft.
Practically 40 of the roughly 200 safety holes addressed this month have a ‘crucial’ severity score. They have an effect on Home windows, Azure, Workplace, Outlook, Trade, and AI instruments, and their exploitation can result in distant code execution, privilege escalation, and data disclosure.
Along with the vulnerabilities which can be particular to Microsoft merchandise, the tech large revealed advisories for 360 points affecting third-party elements utilized by its software program.
Adobe’s newest Patch Tuesday updates repair greater than 120 vulnerabilities.
Associated: Microsoft Tries to Calm Authorized Risk Fears After Zero-Day Disclosure Backlash
Associated: How One Line of Code Put Billions of Microsoft Android App Downloads at Danger
Associated: Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days
![How creators and entrepreneurs are utilizing AI to hurry up & succeed [data]](https://blog.aimactgrow.com/wp-content/uploads/2025/06/Untitled20design-Apr-07-2023-08-24-35-4586-PM-120x86.png)
