CVE-2026-45657: Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.

CVE-2026-45657 [CRITICAL] Microsoft Windows up to Server 2025 Kernel use after free A vulnerability described as very critical has been identified in Microsoft Windows up to Server 2025. The affected element is an unknown function of the component Kernel. The manipulation results in use after free. This vulnerability was named CVE-2026-45657. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is recommended.

CVE-2026-45657 [CRITICAL] CWE-122 Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network. Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.

CVE-2026-35273 [CRITICAL] 15th June – Threat Intelligence Report Latest Publications CPR Podcast Channel AI Research Web 3.0 Security Intelligence Reports ThreatCloud AI Threat Intelligence & Research Zero Day Protection Sandblast File Analysis About Us SUBSCRIBE 2026 2025 2024 2023 2022 2021 2020 2019 2018 2017 2016 ## 15th June – Threat Intelligence Report For the latest discoveries in cyber research for the week of 15th June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The University of Nottingham, a UK research university, has suffered a data breach after ShinyHunters accessed its student records system. The incident affected about 454,600 current and former students and exposed contact details, passport numbers, enrollment information, and fee payment records later appeared online. According

CVE-2025-10263 [CRITICAL] Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs Home Threat Intelligence Vulnerabilities Cyber Attacks Webinars Expert Insights Awards Webinars Awards Free eBooks About THN Jobs Advertise with us ## Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time of release. Of the 206 flaws, 39 are rated Critical, and 167 are rated Important in severity. This includes 63 privilege escalation, 56 remote code execution, 30 information disclosure, 27 spoofing, 20 security feature bypass, seven denial-of-service, and three tampering vulnerabilities. The patches also include two non-Microsoft CVEs, a privilege escalation vulner

CVE-2026-49160 Microsoft and Adobe Patch Tuesday, June 2026 Security Update Review ## Table of Contents Microsoft Patch Tuesday forJune2026 Adobe Patch for June 2026 Zero-dayVulnerabilities Patched in June Patch Tuesday Edition Critical Severity Vulnerabilities Patched inJunePatch Tuesday Edition Other Microsoft Vulnerability Highlights Microsoft Release Summary EVALUATE Vendor-Suggested Mitigation with Policy Audit (PA) Qualys Monthly Webinar Series Every Patch Tuesday presents a race between defenders applying fixes and attackers seeking opportunities. Microsoft’s June 2026 release is no exception, delivering security updates for vulnerabilities that could significantly impact enterprise environments if left unaddressed. ## Microsoft Patch Tuesday for June 2026 This month’s release addresses 206 vulnerabilities, including 33 critical and 167 important-severi

CVE-2026-42985 [HIGH] Microsoft Patch Tuesday for June 2026 — Snort rules and prominent vulnerabilities ## Microsoft Patch Tuesday for June 2026 — Snort rules and prominent vulnerabilities Microsoft has released its monthly security update for June 2026, which includes 206 vulnerabilities affecting a range of products, including 32 that Microsoft marked as “critical”. Out of 32 "critical" entries, 28 are remote code execution (RCE) vulnerabilities in Microsoft Windows services and applications including Windows Active Directory, Windows Kerberos Key Distribution Centre (KDC), Windows Graphics component, Windows Remote Desktop client, Windows Deployment Services (WDS), DHCP Client service, Windows Hyper-V, Windows Kernel and Media, Azure Kubernetes Service (AKS), Microsoft Office, Microsoft Outlook, Microsoft Word, Microsoft SQL server and Windows HTTP Protocol Stack. Talos highlights 4 cr

CVE-2026-49160 [HIGH] Microsoft June 2026 Patch Tuesday, (Tue, Jun 9th) Microsoft June 2026 Patch Tuesday Published: 2026-06-09. Last Updated: 2026-06-09 17:34:29 UTC by Johannes Ullrich (Version: 1) 0 comment(s) Microsoft today released patches for 204 vulnerabilities. 38 of these vulnerabilities are considered critical, and three have been disclosed before today. Six of the vulnerabilities affect Microsoft cloud solutions and do not require any user action. In addition, Microsoft incorporated 360 different vulnerabilities affecting Chromium into its Edge browser. This is certainly a busier-than-usual patch Tuesday. In particular, the large number of patched Chromium/Edge vulnerabilities underscores the impact of AI tools on vulnerability discovery. Some noteworthy vulnerabilities: CVE-2026-49160: This vulnerability was made public a week ago. As implem

CVE-2026-33825 [HIGH] Patch Tuesday - June 2026 Microsoft is publishing 200 vulnerabilities on June 2026 Patch Tuesday . Microsoft is not aware of exploitation in the wild for any of these vulnerabilities, and is aware of public disclosure for three. This is similar to last month’s Patch Tuesday, however several of last month’s vulnerabilities ended up on CISA KEV in the days following their publication. So far this month, Microsoft has provided patches to address 360 browser vulnerabilities, which is an order of magnitude more than has been typical in any given month over the past few years. As usual, browser vulns are not included in the Patch Tuesday count above. Indeed, the vast, and presumably sustained, uptick in the number of browser vulnerabilities has led to Microsoft no longer enumerating Chromium CVEs in the Security Update G

CVE-2026-45586 [HIGH] Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws ## Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws ## Lawrence Abrams 65 Elevation of Privilege Vulnerabilities 19 Security Feature Bypass Vulnerabilities 55 Remote Code Execution Vulnerabilities 30 Information Disclosure Vulnerabilities 7 Denial of Service Vulnerabilities 27 Spoofing Vulnerabilities When BleepingComputer reports on Patch Tuesday security updates, we only count those released by Microsoft today. Therefore, the number of flaws does not include flaws in Mariner, Azure HorizonDB, Microsoft Copilot, Copilot Chat, M365 Copilot, Microsoft Exchange Online, and Microsoft Graph that were fixed by Microsoft earlier this month. There were also a massive 360 Microsoft Edge/Chromium flaws that were fixed by Google this month, which were excluded from this Patch

CVE-2026-45586 June 2026 Patch Tuesday: Microsoft Patches 206 Vulnerabilities Including Three Publicly Disclosed Zero-Days CrowdStrike 2026 Technology Threat Landscape Report: China’s Ambitions Fuel Attacks Jun 09, 2026 June 2026 Patch Tuesday: Microsoft Patches 206 Vulnerabilities Including Three Publicly Disclosed Zero-Days Jun 09, 2026 CrowdStrike and Zscaler Bring Continuous Identity to Zero Trust Access Jun 08, 2026 3 Principles to Safely Scale Agentic AI Jun 05, 2026 CrowdStrike 2026 Technology Threat Landscape Report: China’s Ambitions Fuel Attacks Jun 09, 2026 June 2026 Patch Tuesday: Microsoft Patches 206 Vulnerabilities Including Three Publicly Disclosed Zero-Days Jun 09, 2026 CrowdStrike and Zscaler Bring Continuous Identity to Zero Trust Access Jun 08, 2026 3 Principles to Safely Scale Agentic AI Jun 05, 2026 Video Highlights the 4 Key Steps to Successful Incident Response Dec 02, 2019 Hel