Articles from June 9, 2026
Browse all Windows news articles published on June 9, 2026
CVE-2026-45592 WinINet EoP: Why the June Patch for Windows Must Be Priority
Microsoft has published CVE-2026-45592 as a Windows Internet (wininet.dll) elevation-of-privilege vulnerability in the Security Update Guide on June 9, 2026, signaling that supported Windows systems s
Windows 10 KB5094127 (June 2026) ESU Update: Build 19045.7417 & Secure Boot
Microsoft released Windows 10 KB5094127 on June 9, 2026, as the June Patch Tuesday cumulative update for Windows 10 22H2 systems covered by Extended Security Updates, raising eligible PCs to build 190
CVE-2026-45591: Patch Tuesday ASP.NET Core DoS Fix for .NET 8–10 and VS 2026
Microsoft published CVE-2026-45591 on June 9, 2026, as an Important-rated ASP.NET Core denial-of-service vulnerability caused by uncontrolled resource consumption and affecting .NET 8.0, .NET 9.0, .NE
CTFMON CVE-2026-45586: Windows Privilege Escalation Patched in June Patch Tuesday
Microsoft disclosed CVE-2026-45586 on June 9, 2026, as a Windows Collaborative Translation Framework, or CTFMON, elevation-of-privilege vulnerability affecting Windows systems and addressed through th
CVE-2026-45482: Path Traversal Auth Bypass in VS Code Copilot Chat
Microsoft disclosed CVE-2026-45482 on June 9, 2026, as an Important-rated security feature bypass in the Microsoft Visual Studio Code Copilot Chat extension, caused by a path traversal weakness that c
CVE-2026-45476 Linux Fix: Azure Network Adapter Kernel Update & Reboot
To protect yourself from CVE-2026-45476, you need to update affected Linux systems using the Microsoft Azure Network Adapter driver to a kernel build that includes the upstream fix, or apply your Linu
CVE-2026-45465 SharePoint Spoofing Fix: Patch On-Prem Servers Promptly
Microsoft published CVE-2026-45465 on June 9, 2026, describing an Important-rated Microsoft SharePoint Server spoofing vulnerability in supported on-premises SharePoint Server editions, caused by cros
CVE-2026-45464: Important SharePoint XSS Spoofing Fix Released June 9, 2026
Microsoft disclosed CVE-2026-45464 on June 9, 2026, as an Important-rated spoofing vulnerability in SharePoint Server caused by cross-site scripting, affecting SharePoint Server Subscription Edition,
CVE-2026-45463: Why Office “Remote RCE” Can Map to CVSS “Local”
Microsoft’s CVE-2026-45463 is titled as a Microsoft Office remote code execution vulnerability because the attacker can be remote from the victim, even though the CVSS attack vector is Local because e
CVE-2026-45457 Word RCE: How Windows Teams Should Patch Fast (June 2026)
Microsoft has published CVE-2026-45457 as a Microsoft Word remote code execution vulnerability in the Microsoft Security Response Center’s Security Update Guide, putting another Office document-handli
CVE-2026-45462 SharePoint Spoofing: Patch On-Prem Faster, Verify Trust Boundaries
Microsoft has published CVE-2026-45462 as a Microsoft SharePoint Server spoofing vulnerability in the Security Update Guide, framing the issue around confidence in the vulnerability’s existence and th
CVE-2026-45455 Excel Info Disclosure: Why “C:L, I:N, A:N” Still Matters
On June 9, 2026, Microsoft’s Security Update Guide entry for CVE-2026-45455 described a Microsoft Excel information disclosure vulnerability whose CVSS impact metrics indicate limited confidentiality