Find notable cyber news and cases, enriched with sources, timelines, and signals.

Microsoft April 2026 Patch Tuesday security updates (167 flaws)

Security Patch Release
First reported
Last updated
Happening score
H score 55
2 unique sources, 2 articles

Summary

Hide ▲

Microsoft's April 2026 Patch Tuesday ships security updates for 167 flaws, including 2 zero-days, reducing exposure across widely used Microsoft software. The release also fixes 8 Critical vulnerabilities, including 7 remote code execution bugs and 1 denial of service flaw. That scope makes the update bundle especially important for systems running Microsoft Office, SharePoint Server, and Microsoft Defender.

Cases

Related Happenings

Adobe ColdFusion and Campaign Classic max-severity patch release (multiple vulnerabilities)

Security Patch Release
H score51 First: 01.07.2026 10:34 Last: 01.07.2026 10:34 Sources 1

About this happening: **Adobe** released **security patches** for **seven maximum-severity vulnerabilities** in **ColdFusion** and **Campaign Classic**, including flaws that can lead to **remote code e...

Kandji security patch release for CVE-2026-39118

Security Patch Release
H score17 First: 25.06.2026 14:00 Last: 25.06.2026 14:00 Sources 1

About this happening: Kandji fixed its **MDM agent** on **macOS** and assigned **CVE-2026-39118** after validation showed a trust issue that could let a standard user disable enterprise security contro...

Microsoft releases RoguePlanet Defender security update for CVE-2026-50656

Security Patch Release
H score32 First: 17.06.2026 20:36 Last: 17.06.2026 20:36 Sources 1

About this happening: **Microsoft** has released a **security update** for **CVE-2026-50656**, remediating **RoguePlanet** in the **Microsoft Malware Protection Engine (mpengine.dll)**. The flaw is a *...

Latest development: 09.07.2026 11:48

Microsoft released security updates for CVE-2026-50656, remediating the RoguePlanet privilege-escalation flaw in Microsoft Malware Protection Engine (mpengine.dll) with version 1.1.26060.3008 and additional defense-in-depth updates. Microsoft said no customer action is required to install the update.

Microsoft Office launch disruption after June 2026 Windows updates

Service Disruption
H score0 First: 17.06.2026 14:54 Last: 17.06.2026 14:54 Sources 1

About this happening: Microsoft is investigating a **Windows update-related disruption** that can stop **third-party applications** from launching **Word, Excel, PowerPoint, Access** or opening documen...

Microsoft security patch release for CVE-2026-42824

Security Patch Release
H score30 First: 15.06.2026 16:00 Last: 15.06.2026 16:00 Sources 1

About this happening: Microsoft's **fix for SearchLeak** in **Microsoft 365 Copilot Enterprise** closed a **critical** flaw tied to **CVE-2026-42824** that could expose **mailbox, OneDrive, and SharePo...

Timeline

  1. 14.04.2026 03:00 1 articles · 2mo ago

    Microsoft releases April 2026 Patch Tuesday updates

    Initial Disclosure

    Microsoft releases the April 2026 Patch Tuesday security updates for Microsoft products, fixing 167 flaws and 2 zero-days across elevation of privilege, security feature bypass, remote code execution, information disclosure, denial of service, and spoofing categories.

    Show sources
  2. 14.04.2026 03:00 2 articles · 2mo ago

    Microsoft details zero-days and update guidance

    Mitigation Patch Update

    Microsoft identifies CVE-2026-32201 as a Microsoft SharePoint Server spoofing vulnerability exploited in attacks and CVE-2026-33825 as a Microsoft Defender elevation of privilege flaw that can grant SYSTEM privileges, while also fixing Microsoft Office remote code execution bugs that can be triggered through the preview pane or malicious documents and urging prompt Office updating.

    Show sources