Articles from June 9, 2026
Browse all Windows news articles published on June 9, 2026
CVE-2026-41092 Kinect Bug: Local Privilege Escalation to SYSTEM (June 2026 Patch)
Microsoft published CVE-2026-41092 on June 9, 2026, as an Important-rated Microsoft Kinect elevation-of-privilege vulnerability caused by improper access control, with security updates available for s
CVE-2026-47291: Confirmed Windows HTTP.sys RCE—Patch Tuesday Priority Guide
Microsoft disclosed CVE-2026-47291 on June 9, 2026, as a Windows HTTP.sys remote code execution vulnerability in the HTTP protocol stack, giving administrators a Patch Tuesday item that matters most o
CVE-2026-47289: Patch Microsoft RDP Client RCE on Admin Workstations
Microsoft disclosed CVE-2026-47289 on June 9, 2026, as a Remote Desktop Client remote code execution vulnerability in its Security Update Guide, giving Windows administrators another client-side RDP f
CVE-2026-47288 Kerberos KDC RCE: Critical Patch Guidance for Windows Server DCs
Microsoft disclosed CVE-2026-47288 on June 9, 2026, as a critical Windows Kerberos Key Distribution Center remote code execution flaw affecting supported and extended-support Windows Server domain con
CVE-2026-47287: VS Code Tampering Risk in the Developer Supply Chain
CVE-2026-47287 is a Microsoft-listed tampering vulnerability in Visual Studio Code, published through the Microsoft Security Response Center on June 9, 2026, affecting the developer toolchain rather t
CVE-2026-45657: Critical Windows Kernel RCE Patch Guide (June 2026)
Microsoft disclosed CVE-2026-45657 on June 9, 2026, as a critical Windows Kernel remote code execution vulnerability affecting supported Windows 11 and Windows Server releases, with patches available
CVE-2026-45656: Patch UEFI Secure Boot Bypass in Windows (June 2026)
Microsoft disclosed CVE-2026-45656 on June 9, 2026, as an Important-rated Windows UEFI Secure Boot security feature bypass that allows an authorized local attacker to weaken Secure Boot protections ac
CVE-2026-45655 BitLocker Bypass: Patch Tuesday Boot Trust Risks (June 2026)
Microsoft disclosed CVE-2026-45655, a Windows BitLocker security feature bypass vulnerability, in its June 9, 2026 Security Update Guide, placing it among a notably large Patch Tuesday release that al
CVE-2026-45650: Important Spoofing Flaw in Bing Search for Android (Fixed 33.3)
Microsoft disclosed CVE-2026-45650 on June 9, 2026, as an Important-severity spoofing flaw in Microsoft Bing Search for Android, fixed in build 33.3, where a crafted URL could cause user-interface mis
CVE-2026-45649: Microsoft Office Android Spoofing Risk & Mobile Patch Guidance
On June 9, 2026, Microsoft disclosed CVE-2026-45649, an Important-rated spoofing vulnerability in Office for Android affecting Word, PowerPoint, and Excel, caused by improper access control and requir
CVE-2026-45648 AD DS RCE: How to Patch and Triage When Details Are Sparse
As of June 9, 2026, CVE-2026-45648 is listed by Microsoft as a Windows Active Directory Domain Services remote code execution vulnerability, but the public advisory material available around it expose
CVE-2026-45645: Why “Remote RCE” Uses AV:L for Microsoft Office
Microsoft’s CVE-2026-45645 advisory describes a Microsoft Office remote code execution vulnerability even though its CVSS attack vector is local because “remote code execution” describes where the att