Content Paint
Search
Sign in
Membership

Patch Tuesday

 |  Patch Tuesday  | May 12, 2026
Pwn a CEO with a single email? Patch Tuesday brings nasty zero-click Outlook bug
Pwn a CEO with a single email? Patch Tuesday brings nasty zero-click Outlook bug

Redmond "lists this as a Microsoft Word bug, which may or may not be entirely accurate... it is a genuine Outlook 0-click RCE"

Patch Tuesday  | Apr 15, 2026
Patch Tuesday's a monster: Thank AI?
Patch Tuesday's a monster: Thank AI?

p.s. Yes that IS a SQL injection vulnerability, in Fortinet’s FortiClient EMS, in 2026...

Patch Tuesday  | Feb 10, 2026
Patch Tuesday: Microsoft pushes fixes for SIX zero days – MSHTML under attack again
Patch Tuesday: Microsoft pushes fixes for SIX zero days – MSHTML under attack again

EOP to SYSTEM via Windows Remote Access ftw.

Patch Tuesday  | Jan 14, 2026
Patch Tuesday: 2026's first 0day, and Office at high risk
Two Microsoft laptops left open and unattended at a table. Patch Tuesday includes a Desktop Windows Manager zero day

A zero day with the potential for use in a chain is top of the 112-strong list.

 |  Patch Tuesday  | Dec 10, 2025
December's Patch Tuesday brings an 0day - and prompt injection warnings
December's Patch Tuesday brings an 0day - and prompt injection warnings

Microsoft patched 1,139 vulnerabilities in 2025. This month, look out for...

cybersecurity  | Oct 15, 2025
Patch Tuesday: Windows users hacked due to legacy fax modem driver
Patch Tuesday: Windows users hacked due to legacy fax modem driver

Three 0days and a pre-auth RCE (CVSS 9.8) in Windows Server Update Service that deserves urgent attention

 |  mícrosoft  | Jul 08, 2025
Patch Tuesday: A wormable bug in a security mechanism and other delights
Patch Tuesday: A wormable bug in a security mechanism and other delights

The bug is in the SPNEGO Extended Negotiation Security Mechanism – which essentially allows a client and server to negotiate the choice of security mechanism that they use.

 |  Security  | Jun 10, 2025
Patch Tuesday: Another MSHTML zero day exploited
Patch Tuesday: Another MSHTML zero day exploited

Attackers are going after high-profile targets in the government and defense sectors, with phishing campaigns that use WebDAV and LOLBins to deploy malware

Security  | May 14, 2025
Microsoft pushes patches for a trio of critical Azure vulnerabilities
A person wearing a white sheet, dressed like a ghost, waves at the camera. Researchers said a flaw with a windows scripting engine saw the ghost of internet explorer haunt users

Five zero days also known-exploited. Patch up!

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.