windows security

Microsoft disclosed CVE-2026-40403 on May 12, 2026, as a critical Windows Graphics Component remote code execution vulnerability in Win32K-GRFX, caused by a heap-based buffer overflow that could let a low-privileged authenticated attacker escape a contained local environment such as a guest...

Microsoft published CVE-2026-40369 on May 12, 2026 as part of its May Patch Tuesday release, identifying it as a Windows kernel-mode driver vulnerability rated Important with a CVSS base score of 7.8. The flaw is not, on the public evidence available today, a panic-grade Windows emergency. But...

Microsoft disclosed CVE-2026-34341 on May 12, 2026, as an Important Windows Link-Layer Discovery Protocol elevation-of-privilege flaw in which a low-privileged local attacker could exploit a double-free condition, win a race condition, and gain SYSTEM privileges on affected Windows clients and...

Microsoft disclosed CVE-2026-34340 on May 12, 2026, as a Windows Projected File System elevation-of-privilege vulnerability, assigning it to the May 2026 security update cycle and identifying ProjFS as the affected Windows component rather than a standalone third-party application. The short...

On May 12, 2026, Microsoft disclosed CVE-2026-34338, an elevation-of-privilege vulnerability in the Windows Telephony Service, through its Security Update Guide as part of the May security update cycle affecting Windows systems that include the legacy telephony component and enterprise...

Microsoft has listed CVE-2026-34337 as a Windows Cloud Files Mini Filter Driver elevation-of-privilege vulnerability in the Security Update Guide, a local Windows flaw whose practical risk depends less on remote reachability than on how quickly attackers can turn sparse public details into...

Microsoft’s CVE-2026-34334 is a Windows TCP/IP elevation-of-privilege vulnerability disclosed through the Microsoft Security Response Center, and its most important operational clue is not the scary networking label but the confidence signal attached to the report. The vulnerability sits in the...

Microsoft disclosed CVE-2026-33838, a Windows Message Queuing elevation-of-privilege vulnerability, in its Security Update Guide on May 12, 2026, affecting Windows systems where the legacy MSMQ component is present and serviced through the current Windows security update channel. The important...

Microsoft disclosed CVE-2026-33837 on May 12, 2026, as an Important Windows TCP/IP local elevation-of-privilege vulnerability caused by a heap-based buffer overflow that lets an authorized low-privilege attacker interact with tcpip.sys and gain kernel-level privileges on affected Windows...

Microsoft has listed CVE-2026-42896 as a Windows DWM Core Library elevation-of-privilege vulnerability in its Security Update Guide, tying the flaw to the Desktop Window Manager component that every modern Windows desktop session depends on. The sparse public entry matters because DWM bugs...

Microsoft disclosed CVE-2026-32170, a Windows Rich Text Edit Control elevation-of-privilege vulnerability, in its May 12, 2026 Security Update Guide as part of the monthly Patch Tuesday release affecting Windows systems that include the Rich Edit component. The important word is not “rich,” and...

Microsoft’s CVE-2026-32161 is a Windows Native WiFi Miniport Driver remote code execution vulnerability disclosed through the MSRC Security Update Guide, with Microsoft’s own advisory serving as the key confirmation that the flaw exists and affects supported Windows systems. The important word...

Microsoft disclosed CVE-2026-41088 on May 12, 2026, as an Important-rated Windows Ancillary Function Driver for WinSock elevation-of-privilege vulnerability that allows a locally authorized attacker to gain SYSTEM privileges after exploiting external control of a file name or path. That dry...

Microsoft disclosed CVE-2026-40415, a Windows TCP/IP remote code execution vulnerability, in its Security Update Guide on May 12, 2026, framing the issue as a network-stack flaw whose risk depends not only on severity but on how confidently defenders can trust the available technical details...

Microsoft published CVE-2026-40414 on May 12, 2026 as an Important Windows TCP/IP denial-of-service vulnerability caused by a NULL pointer dereference, with updates available across supported Windows client and server releases and exploitation assessed as unlikely at publication. That sounds, at...

Microsoft disclosed CVE-2026-40408 on May 12, 2026, as an Important-rated Windows WAN ARP Driver elevation-of-privilege vulnerability that affects supported Windows client and server releases and allows a locally authenticated attacker to gain SYSTEM privileges after exploiting a use-after-free...

Microsoft disclosed CVE-2026-40380 on May 12, 2026, as a Windows Volume Manager Extension Driver remote code execution vulnerability in the Microsoft Security Update Guide, placing a storage-adjacent kernel component into the monthly patching spotlight. The public entry is thin on exploit...

Microsoft has published CVE-2026-40374 as a Microsoft Power Automate Desktop information disclosure vulnerability in its Security Update Guide, identifying the issue as a confirmed flaw in the desktop automation product rather than a speculative or third-party-only report. The sparse advisory...

CVE-2026-35418 is a Microsoft-disclosed elevation-of-privilege vulnerability in the Windows Cloud Files Mini Filter Driver, published in the Security Update Guide on May 12, 2026, affecting Windows systems that rely on the cloud-files plumbing used by OneDrive-style placeholder and...

CVE-2026-35415 is listed by Microsoft as a Windows Storage Spaces Controller elevation-of-privilege vulnerability in the Security Update Guide, with the key public signal today being confirmed report confidence rather than a disclosed exploit technique, proof-of-concept, or detailed root-cause...