Patch Tuesday multi-vendor security patch release (multiple vulnerabilities)
Security Patch Release
Summary
Hide ▲
Show ▼
On Patch Tuesday, software vendors released security updates across OS, cloud, network, and application platforms, closing multiple flaws in widely used products and services. The broad cycle matters because it includes actively exploited Windows zero-days, critical SAP vulnerabilities, and newly disclosed issues in Intel TDX 1.5. The release reduces exposure across both consumer and enterprise environments, but it also signals that administrators need to prioritize patch deployment quickly. The update round spans vendors whose products can affect privilege escalation, security-feature bypass, database compromise, and other high-impact risks.
Related Happenings
Ivanti security patch release for CVE-2026-8043
Security Patch Release
First: 18.05.2026 13:54
Last: 18.05.2026 13:54
Sources 1
About this happening:
**Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...
Ivanti security patch release for CVE-2026-8043
Security Patch ReleaseAbout this happening: **Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...
Microsoft Exchange CVE-2026-42897 mitigation advisory
Advisory/Mitigation
First: 15.05.2026 12:40
Last: 15.05.2026 12:40
Sources 1
About this happening:
**Microsoft** issued immediate mitigation guidance for **CVE-2026-42897**, reducing risk for **Exchange Server 2016, 2019, and Subscription Edition (SE)** on-premises servers that...
Microsoft Exchange CVE-2026-42897 mitigation advisory
Advisory/MitigationAbout this happening: **Microsoft** issued immediate mitigation guidance for **CVE-2026-42897**, reducing risk for **Exchange Server 2016, 2019, and Subscription Edition (SE)** on-premises servers that...
Latest development: 15.05.2026 15:35
Microsoft issued temporary mitigation guidance for CVE-2026-42897 while a patch is still in development, recommending the Exchange Emergency Mitigation (EM) Service, which is enabled by default and can be checked with the Exchange Health Checker script, or the Exchange On-premises Mitigation Tool (EOMT) for disconnected or air-gapped environments. Microsoft noted that the mitigations can disrupt features such as OWA Print Calendar and Inline images, and that servers older than March 2023 cannot receive new mitigations through EM Service.
Cisco security patch release for CVE-2026-20182
Security Patch Release
First: 14.05.2026 20:45
Last: 14.05.2026 20:45
Sources 1
About this happening:
Cisco released **updates** for **CVE-2026-20182**, a **maximum-severity authentication bypass** in **Catalyst SD-WAN Controller/Manager**, after the flaw was **exploited in limite...
Cisco security patch release for CVE-2026-20182
Security Patch ReleaseAbout this happening: Cisco released **updates** for **CVE-2026-20182**, a **maximum-severity authentication bypass** in **Catalyst SD-WAN Controller/Manager**, after the flaw was **exploited in limite...
Microsoft May 2026 Patch Tuesday release
Security Patch Release
First: 13.05.2026 13:36
Last: 13.05.2026 13:36
Sources 1
About this happening:
Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...
Microsoft May 2026 Patch Tuesday release
Security Patch ReleaseAbout this happening: Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...
Microsoft security patch release for CVE-2026-41089
Security Patch Release
First: 13.05.2026 00:46
Last: 13.05.2026 00:46
Sources 1
About this happening:
**Microsoft** and other major software vendors shipped a heavy **May 2026** patch cycle, with fixes spanning **Windows**, **iOS**, **Firefox**, **Oracle** products, and **Chrome**...
Microsoft security patch release for CVE-2026-41089
Security Patch ReleaseAbout this happening: **Microsoft** and other major software vendors shipped a heavy **May 2026** patch cycle, with fixes spanning **Windows**, **iOS**, **Firefox**, **Oracle** products, and **Chrome**...
Timeline
-
11.02.2026 15:28 2 articles · 3mo ago
Patch Tuesday updates span Microsoft, SAP, Intel, and Adobe
Initial DisclosureMicrosoft issued fixes for 59 flaws in Windows, including six actively exploited zero-days that could enable security-feature bypass, privilege escalation, and denial-of-service conditions. SAP shipped fixes for CVE-2026-0488 in SAP CRM and SAP S/4HANA and CVE-2026-0509 in SAP NetWeaver Application Server ABAP and ABAP Platform; Onapsis said customers must implement a kernel update and set a profile parameter, and some user-role and UCON adjustments may be needed to avoid interrupting business processes. Intel and Google examined Intel Trust Domain Extensions (TDX) 1.5 and identified five vulnerabilities, while Adobe released updates for Audition, After Effects, InDesign Desktop, Substance 3D, Bridge, Lightroom Classic, and DNG SDK.
Show sources
- Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms — thehackernews.com — 11.02.2026 15:28
- Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms — thehackernews.com — 11.02.2026 15:28