Information Disclosure
The latest Information Disclosure coverage — news, analysis, and updates from the WindowsNews.AI desk.
CVE-2026-45634: Windows DHCP Client Vulnerability Exposes Sensitive Data, Patch Released
Microsoft’s June 2026 Patch Tuesday brought a grim reminder of how legacy network protocols continue to haunt enterprise security. Among the 70-plus vulnerabilities addressed this month,...
Microsoft Word Info Disclosure CVE-2026-45466 Demands Swift Enterprise Triage This Patch Tuesday
Microsoft dropped a critical security advisory on June 9, 2026, tagging CVE-2026-45466 as an information disclosure vulnerability in Microsoft Word. The flaw, disclosed as part of the monthly Patch...
Patch Now: Microsoft Confirms Office Bug That Could Expose Your Data Without a Trace
On June 9, 2026, Microsoft published a security advisory for CVE-2026-45485, an information disclosure vulnerability in Microsoft Office. The bug, part of the June Patch Tuesday batch, is confirmed...
CVE-2026-48579 Exchange Online Info Disclosure: What Administrators Need to Know
Microsoft has officially listed CVE-2026-48579 as an information disclosure vulnerability affecting Microsoft Exchange Online, according to a recent entry in the Security Update Guide. The...
Microsoft Graph CVE-2026-47655: Why MSRC Confidence Ratings Matter for Cloud API Security
Microsoft’s publication of CVE-2026-47655 in its Security Update Guide marks a new information disclosure vulnerability in Microsoft Graph, the gateway to data across Microsoft 365 services. The...
CVE-2026-47644: Copilot Chat Information Disclosure Vulnerability Hits Microsoft Edge
A new information disclosure vulnerability tracked as CVE-2026-47644 has been publicly documented by the Microsoft Security Response Center (MSRC). The flaw, rated Important, resides in the Copilot...
CVE-2026-42824: crafted prompts can leak M365 Copilot data, Microsoft warns
Microsoft has published CVE-2026-42824 in its Security Update Guide, flagging a new information disclosure vulnerability affecting the Microsoft 365 Copilot AI assistant. The disclosure underscores...
Linux USB Printer Bug CVE-2026-46167 Exposes Kernel Memory: Why Windows Users Should Care
A newly disclosed vulnerability in the Linux kernel's USB printer driver can leak sensitive kernel heap memory, raising alarms across the open-source ecosystem. Assigned CVE-2026-46167 on May 28,...
CVE-2026-46151: Linux Kernel USB Printer Driver Exposes Heap Memory via Malformed Packets
The National Vulnerability Database (NVD) published a new information-disclosure vulnerability on May 28, 2026, tracked as CVE-2026-46151. The flaw resides in the Linux kernel’s USB printer driver...
Windows Teams: Patch Linux WSL2 & Azure VMs for Critical Info Leak
CVE-2026-46132 landed in the National Vulnerability Database on May 28, 2026, exposing a subtle but dangerous information-disclosure flaw in the Linux kernel. The vulnerability, first flagged by...
Kernel MCTP Bug Leaks Memory via Uninitialized Padding; Patching Urged
A routine code audit of the Linux kernel’s MCTP networking subsystem uncovered a subtle but dangerous bug—a classic uninitialized-memory information leak hiding in plain sight. CVE-2026-45930,...
Microsoft Patches High-Severity DWM Information Disclosure Flaw (CVE-2026-34336) in May 2026 Update
Microsoft closed out its May 12, 2026 security update cycle with a fix for CVE-2026-34336, a local information disclosure vulnerability in the Windows Desktop Window Manager (DWM) core library. The...