Articles from June 9, 2026
Browse all Windows news articles published on June 9, 2026
CVE-2026-45637: Patch Tuesday DWM EoP—Why “Local” Still Demands Urgent Updates
CVE-2026-45637 is an Important-rated Microsoft DWM Core Library elevation-of-privilege vulnerability patched in Microsoft’s June 9, 2026 Patch Tuesday release, affecting Windows systems through the De
CVE-2026-45603 AFD.sys Local Privilege Escalation: Patch Now for Windows
Microsoft has identified CVE-2026-45603 as a Windows Ancillary Function Driver for WinSock elevation-of-privilege vulnerability, published through the MSRC Security Update Guide on June 9, 2026, affec
CVE-2026-45638: Windows WinSock Driver Local Privilege Escalation (Patch Tuesday)
Microsoft disclosed CVE-2026-45638 on June 9, 2026, as a Windows Ancillary Function Driver for WinSock elevation-of-privilege vulnerability affecting Windows systems, with the practical risk that an a
CVE-2026-45635: Windows UPnP Device Host RCE—Patch Tuesday Priorities
Microsoft disclosed CVE-2026-45635 on June 9, 2026 as an Important-rated Windows UPnP Device Host remote code execution vulnerability affecting the Universal Plug and Play stack, with public listings
CVE-2026-45602: Patch Windows DHCP Server Tampering (CVSS 9.1) ASAP
Microsoft released CVE-2026-45602 on June 9, 2026, as a Windows Dynamic Host Configuration Protocol Server tampering vulnerability affecting supported Windows client and server releases, with an offic
CVE-2026-11295 Chrome Android WebView: Low Severity vs High CVSS Patch Guidance
CVE-2026-11295 is a newly published Google Chrome for Android WebView vulnerability, disclosed on June 4, 2026 and patched before version 149.0.7827.53, that could let a remote attacker escalate privi
CVE-2026-11287 Chrome for Android: NVD CPE Gap, Version 149.0.7827.53
NVD’s June 8, 2026 enrichment for CVE-2026-11287 lists Google Chrome versions before 149.0.7827.53 combined with Android as the vulnerable configuration, but the record still appears incomplete becaus
CVE-2026-11263 CPE Confusion: Chrome on Android Before Chrome 149 Fix
CVE-2026-11263 is a low-severity Chromium WebAuthentication flaw affecting Google Chrome on Android before version 149.0.7827.53, published by NVD on June 4, 2026, and mapped by NIST on June 8 to Chro
CVE-2026-11226: Chrome Android PreviewTab Same-Origin Bypass (Patch 149.0.7827.53)
Google Chrome for Android before version 149.0.7827.53 contained CVE-2026-11226, a PreviewTab policy-enforcement flaw disclosed on June 4, 2026, that could let a remote attacker bypass the browser’s s
CVE-2026-11188: Chrome Android USB Use-After-Free, CPE Gaps, and Patch Priorities
Google published CVE-2026-11188 on June 4, 2026, describing a medium-severity use-after-free flaw in Chrome’s USB component on Android before version 149.0.7827.53 that could let a remote attacker att
CVE-2026-11148: Chrome on Android Payments Info Leak and CPE Confusion
CVE-2026-11148 is a medium-severity Chrome for Android payments vulnerability, published June 4, 2026 and modified by NVD on June 8, affecting Google Chrome versions before 149.0.7827.53 on Android an
CVE-2026-11175 Chrome Android: UI Spoofing in Messages—Fix and Manage Risk
Google Chrome on Android versions before 149.0.7827.53 were assigned CVE-2026-11175 on June 4, 2026, after Google disclosed that a crafted HTML page could spoof security-related UI in the browser’s Me