Microsoft has patched CVE-2026-50304, a remotely reachable denial-of-service vulnerability in Active Directory Federation Services that requires neither authentication nor user interaction. Organizations still operating AD FS should deploy the July 14, 2026 Windows security updates promptly...