Articles from June 9, 2026
Browse all Windows news articles published on June 9, 2026
CVE-2026-45454 SharePoint RCE: Patch-Management Priority for On-Prem Admins
Microsoft’s June 9, 2026 Security Update Guide entry for CVE-2026-45454 identifies the issue as a Microsoft SharePoint Remote Code Execution vulnerability, placing another server-side collaboration fl
CVE-2026-44822: Why Excel Information Disclosure Needs Prompt Office Patching
Microsoft has published CVE-2026-44822 as a Microsoft Excel information disclosure vulnerability in the Security Update Guide, framing it as a confirmed Office flaw whose practical risk depends less o
VS Code CVE-2026-40376: Patch 1.119.1 and Audit MCP Managed Identity Risk
Microsoft disclosed CVE-2026-40376 on June 9, 2026, as an Important-rated Visual Studio Code elevation-of-privilege vulnerability fixed in VS Code 1.119.1, involving improper input validation that cou
CVE-2026-42835: High-Severity Microsoft Teams Android Info Disclosure Fix
Microsoft disclosed CVE-2026-42835 on June 9, 2026, as a high-severity Microsoft Teams for Android information disclosure vulnerability that can let an authorized attacker disclose information over a
EPC Group Claims AI Visibility Lead for Microsoft Consulting as Purview Governance Rises
EPC Group announced on June 9, 2026, from Houston that it ranked first in favorable AI sentiment and AI share of voice among Microsoft-focused consulting firms in Semrush’s U.S. AI Brand Performance I
CVE-2026-42829: Windows 11 Admin Protection Bypass—KB5094126 & KB5095051
Microsoft disclosed CVE-2026-42829 on June 9, 2026, as an Important Windows Administrator Protection security feature bypass affecting Windows 11 versions 24H2, 25H2, and 26H1, with fixes delivered th
CVE-2026-42828: Windows ProjFS Elevation of Privilege—June 2026 Patch Guide
Microsoft has disclosed CVE-2026-42828, an elevation-of-privilege vulnerability in the Windows Projected File System, as part of its June 2026 security guidance for Windows systems, with the practical
CVE-2026-40371: Patch Tuesday EoP Risk in Microsoft Dynamics 365 On-Prem
On June 9, 2026, Microsoft disclosed CVE-2026-40371, an Important-rated elevation-of-privilege vulnerability in Microsoft Dynamics 365 on-premises, as part of its June Patch Tuesday security release f
CVE-2026-33113: Microsoft Confirms SharePoint Spoofing Bug—Patch On-Prem Now
Microsoft disclosed CVE-2026-33113 on June 9, 2026, as a Microsoft SharePoint Server spoofing vulnerability in its Security Update Guide, placing another on-premises collaboration-server flaw into the
CVE-2026-26142: Critical Remote RCE in Nuance PowerScribe—Patch Urgently
Microsoft disclosed CVE-2026-26142 on June 9, 2026, as a critical remote code execution flaw in Nuance PowerScribe and PowerScribe One caused by unsafe deserialization, allowing an unauthenticated net
CVE-2026-48583 Patch Tuesday: Windows Kernel Local EoP Use-After-Free (7.8)
Microsoft disclosed CVE-2026-48583 on June 9, 2026, as a Windows Kernel elevation-of-privilege vulnerability rated Important with a 7.8 CVSS score, allowing an authorized local attacker to raise privi
CVE-2026-49161: Microsoft PC Manager Security Feature Bypass (Patch Tuesday)
Microsoft disclosed CVE-2026-49161 on June 9, 2026, as an Important-rated security feature bypass vulnerability in Microsoft PC Manager, part of the company’s June Patch Tuesday release, which also co