Microsoft has patched CVE-2026-54990, a heap-based buffer overflow in the Windows Remote Desktop Client that could let an unauthenticated attacker execute code across a network. The flaw carries a CVSS 3.1 score of 9.8 out of 10, making July’s cumulative Windows updates a priority for...