Articles from 2026
Browse all Windows news articles published in 2026
CVE-2026-32154 DWM Elevation of Privilege Vulnerability: Microsoft's Confidence Rating and Windows Security Implications
Microsoft's CVE-2026-32154 vulnerability in the Desktop Window Manager (DWM) exposes a critical local privilege escalation flaw that could allow attackers to gain SYSTEM-level access on Windows...
CVE-2026-32152: Critical DWM Privilege Escalation Vulnerability Requires Immediate Patching
Microsoft has issued a critical security advisory for CVE-2026-32152, a Desktop Window Manager elevation of privilege vulnerability affecting multiple Windows versions. The flaw received a CVSS score...
CVE-2026-32093: Windows fdwsd.dll Elevation-of-Privilege Vulnerability Demands Immediate Patching
Microsoft has documented CVE-2026-32093 as an elevation-of-privilege vulnerability in the Windows Function Discovery Service, specifically involving the fdwsd.dll component. The security advisory...
Rare 'Low' Confidence Label on CVE-2026-32090 Leaves Windows Speech API Patch Priority Uncertain
Microsoft's Security Update Guide entry for CVE-2026-32090 carries a \"Low\" confidence rating, a rarely-seen designation that security researchers say indicates significant uncertainty about the...
CVE-2026-32089 flaw lets attackers hijack Windows Speech API for SYSTEM access
Microsoft has assigned CVE-2026-32089 to a Windows Speech Brokered API elevation-of-privilege vulnerability, marking another critical local privilege escalation flaw in a Windows component that...
Google's Windows Search App Upgrade: Alt+Space Shortcut, Lens Integration, and AI Mode Explained
Google has quietly upgraded its Windows desktop search application with features that challenge Microsoft's own search capabilities. The updated app introduces a system-wide Alt+Space keyboard...
CVE-2026-32087: Windows Function Discovery Vulnerability Exposes Local Privilege Escalation Risk
Microsoft's CVE-2026-32087 reveals a high-confidence local privilege escalation vulnerability in the Windows Function Discovery Service, specifically within the fdwsd.dll component. This security...
CISA Adds 17-Year-Old Office Flaw to KEV Catalog: CVE-2009-0238 Still Actively Exploited
The Cybersecurity and Infrastructure Security Agency has added two Microsoft vulnerabilities to its Known Exploited Vulnerabilities Catalog, including a 17-year-old Office flaw that attackers...
CVE-2026-32085: Windows RPC Information Disclosure Vulnerability Poses Local Low-Privilege Risk
Microsoft has disclosed a new Remote Procedure Call information disclosure vulnerability designated CVE-2026-32085. The classification itself reveals the nature of this security flaw: it's the type...
CVE-2026-32083: Microsoft's Confidence Signal Reveals Critical SSDP Privilege Escalation Vulnerability
Microsoft's security advisory for CVE-2026-32083 carries a confidence signal that reveals more about this vulnerability than the typical technical description. The company has assigned this SSDP...
CVE-2026-32082: Windows SSDP Service Local Privilege Escalation Vulnerability Analysis
Microsoft's CVE-2026-32082 reveals a critical local privilege escalation vulnerability in the Windows Simple Service Discovery Protocol (SSDP) service that allows attackers to gain SYSTEM-level...
CVE-2026-32081: Windows File Explorer Information Disclosure Vulnerability Analysis
Microsoft has assigned CVE-2026-32081 to a newly discovered information disclosure vulnerability in Windows File Explorer that could expose sensitive system data to unauthorized users. The...