CVE-2026-54126 exposes information through Windows Remote Desktop Protocol when an unauthenticated attacker persuades a user to interact with a malicious RDP endpoint. Microsoft fixed the out-of-bounds read in its July 14, 2026 security updates, covering supported Windows 10, Windows 11, and...