Windows Security Updates
The latest Windows Security Updates coverage — news, analysis, and updates from the WindowsNews.AI desk.
CVE-2026-34350: Microsoft Patches Windows Storport Driver Vulnerability That Could Crash Storage Systems
Microsoft has patched a denial-of-service flaw in the Windows Storport Miniport driver that could let attackers remotely crash servers and workstations by targeting their storage subsystems. Tracked...
Microsoft Patches Important Win32k Elevation of Privilege Flaw (CVE-2026-34347) – Update Now
Microsoft has patched a use-after-free vulnerability in the Windows Win32k kernel driver that could allow a local attacker to gain SYSTEM-level privileges. The flaw, tracked as CVE-2026-34347, was...
CVE-2026-21530: Critical Windows Rich Text Edit Privilege Escalation Flaw Fixed in May 2026 Patches
Microsoft has patched a serious elevation-of-privilege vulnerability in the Windows Rich Text Edit component as part of its May 2026 security updates. CVE-2026-21530 could allow attackers to gain...
KB5083769 Blocks psmounterex.sys, Breaking Macrium & Acronis Backup Mounts
System administrators walked into a morning firestorm on April 14, 2026, when Windows security update KB5083769 began landing on machines and silently broke the ability to mount disk-image backups in...
April 2026 Patch Tuesday Blocks psmounterex.sys, Crippling Backup Mounting and VSS
Microsoft’s latest monthly security update, released on April 14, 2026, has added the third-party kernel driver psmounterex.sys to the Microsoft Vulnerable Driver Blocklist, immediately preventing...
April 2026 Update Blocks Paragon Driver, Breaks Backup Mounts—Fix Here
Microsoft began rolling out its April 2026 Patch Tuesday security updates on April 14, and the cumulative release for Windows 11 24H2 and Windows 10 22H2 brings a critical change that disrupts backup...
CVE-2026-7333: Update Chrome and Edge Now to Block GPU Sandbox Escapes on Windows
{ "title": "CVE-2026-7333: Update Chrome and Edge Now to Block GPU Sandbox Escapes on Windows", "content": "Google and Microsoft have sounded the alarm for Windows users: CVE-2026-7333, a...
CVE-2026-32071: Microsoft's LSASS Denial-of-Service Vulnerability Requires Immediate Patching
Microsoft's security advisory for CVE-2026-32071 reveals a critical vulnerability in the Windows Local Security Authority Subsystem Service (LSASS) that could allow attackers to cause...
Microsoft's April 2026 Windows Update Adds RDP File Warnings to Combat Phishing Attacks
Microsoft's April 2026 Windows security updates introduce a fundamental change to how Remote Desktop Protocol files are handled, adding explicit warnings before .rdp files execute. The update targets...
CVE-2026-32084: Windows Print Spooler Vulnerability Demands Immediate Patching
Microsoft has formally documented a critical information disclosure vulnerability in the Windows Print Spooler service, assigning it CVE-2026-32084. This security flaw allows attackers to access...
CVE-2026-27920: Critical Windows UPnP Device Host Vulnerability Requires Immediate Patching
Microsoft's April 14, 2026 security update addresses CVE-2026-27920, a local privilege escalation vulnerability in the Windows UPnP Device Host service. This flaw allows authenticated attackers with...
CVE-2026-27914: Microsoft Patches Critical MMC Local Privilege Escalation Vulnerability
Microsoft has assigned CVE-2026-27914 to a Microsoft Management Console (MMC) elevation-of-privilege vulnerability that requires immediate attention from Windows administrators. The Common...