Articles from June 10, 2026
Browse all Windows news articles published on June 10, 2026
CVE-2026-10892: Chrome Android GPU Sandbox Escape—What Windows IT Should Do
Google published CVE-2026-10892 on June 4, 2026, identifying a critical out-of-bounds write in Chrome’s GPU component on Android before version 149.0.7827.53 that could let a remote attacker attempt a
Update Chrome Now: CVE-2026-10883 ANGLE Heap Corruption Fix
Google published CVE-2026-10883 on June 4, 2026, after fixing a critical ANGLE flaw in Chrome builds before 149.0.7827.53, where a crafted HTML page could trigger heap corruption through a browser gra
Chrome Android Reader Mode CVE-2026-11297: Patch 149.0.7827.53 Now
Google Chrome on Android before version 149.0.7827.53 contains CVE-2026-11297, a Reader Mode input-validation flaw disclosed on June 4, 2026, that can let a local attacker bypass navigation restrictio
CVE-2026-50512: Microsoft PC Manager Missing Auth Enables Local Privilege Escalation
Microsoft disclosed CVE-2026-50512 on June 9, 2026, as a high-severity elevation-of-privilege vulnerability in Microsoft PC Manager caused by missing authentication for a critical function, allowing a
CVE-2026-50511: PC Manager Link Handling Bug Could Enable Windows Privilege Escalation
Microsoft disclosed CVE-2026-50511 on June 9, 2026, as a Microsoft PC Manager elevation-of-privilege vulnerability in which improper link handling before file access could let an authorized local atta
CVE-2026-50507 BitLocker Bypass: Why Physical Access Can Expose Encrypted Data
Microsoft published CVE-2026-50507 on June 9, 2026, as a Windows BitLocker security feature bypass vulnerability that could let an attacker with physical access bypass BitLocker Device Encryption and
Microsoft MAI-Voice-2: Making Speech a Native Azure Copilot Interface for Enterprises
Microsoft announced MAI-Voice-2 on June 2, 2026, at Build in San Francisco as part of a seven-model Microsoft AI release that moves more speech, image, code, transcription, and reasoning capability in
CVE-2026-49160 HTTP.sys DoS: Patch Tuesday Urgency for Windows Web Stack
Microsoft disclosed CVE-2026-49160 on June 9, 2026, as a Windows HTTP.sys denial-of-service vulnerability addressed in the June Patch Tuesday updates, with public disclosure already recorded but no co
CVE-2026-48574 Windows Media RCE: Fast Patch Guidance for June 2026
CVE-2026-48574 is a Microsoft-tracked Windows Media remote code execution vulnerability disclosed through the Microsoft Security Response Center, affecting Windows media-handling components and carryi
CVE-2026-48569 VS Code Local Security Bypass: What Windows Admins Should Do
Microsoft disclosed CVE-2026-48569 on June 9, 2026, as an Important Visual Studio Code security feature bypass vulnerability caused by improper input validation, allowing an unauthorized attacker to b
CVE-2026-48565: Windows Narrator Braille Untrusted Search Path Escalates to SYSTEM
Microsoft published CVE-2026-48565 on June 9, 2026, identifying an Important-rated Windows Narrator Braille elevation-of-privilege vulnerability caused by an untrusted search path that can let a local
CVE-2026-48562 SharePoint Spoofing: Patch Priority for On-Prem Defenders
Microsoft disclosed CVE-2026-48562 on June 10, 2026, as a Microsoft SharePoint Server spoofing vulnerability caused by improper neutralization of input during web page generation, allowing an authoriz