Cve 2026 3049
The latest Cve 2026 3049 coverage — news, analysis, and updates from the WindowsNews.AI desk.
CISA Flags Actively Exploited Oracle PeopleSoft Flaw CVE-2026-35273, Orders Federal Agencies to Patch
CISA added CVE-2026-35273 to the KEV catalog on June 12, 2026, confirming active exploitation of this critical authentication bypass in Oracle PeopleSoft Enterprise PeopleTools. Federal agencies must apply Oracle’s fix by July 3, 2026, while all organizations should urgently secure their PeopleSoft deployments to prevent unauthenticated system takeover.
June 2026 Patch Tuesday: 206 Security Updates Including CTF, HTTP.sys, BitLocker Flaws
Microsoft's June 2026 Patch Tuesday includes 206 security updates, highlighted by three publicly disclosed vulnerabilities in Windows CTF, HTTP.sys, and BitLocker. The release also patches critical flaws in RDP, LDAP, Print Spooler, Outlook, and Exchange Server, demanding immediate attention from administrators.
KB5094126 for Windows 11 (June 2026): Lower Latency, Shared Audio, Camera Fixes, and NPU Telemetry Enhancements
Microsoft's June 2026 Patch Tuesday update KB5094126 for Windows 11 24H2 and 25H2 delivers security fixes, lower system latency, shared Bluetooth LE Audio broadcasting, camera reliability improvements, and NPU performance telemetry. The update raises builds to 26100.8655 and 26200.8655 and is recommended for all users.
Windows Server 2025 GA DNS over HTTPS: Encrypted DNS for Enterprises Explained
Microsoft has made DNS over HTTPS generally available on Windows Server 2025, enabling encrypted DNS queries for enterprise networks. The feature supports both client-facing and forwarding scenarios, integrates with PowerShell and DNS Manager, and aligns with Zero Trust security models. Administrators should consider performance, certificate management, and firewalls when deploying DoH.
Windows 11 KB5094126 Delivers Low Latency Profile for Snappier Click Response and Gaming Edge
Microsoft's June 2026 cumulative update KB5094126 introduces the highly anticipated Low Latency Profile to Windows 11 24H2 and 25H2, reducing input latency by up to 20% for gamers and power users. The feature, enabled via Settings or Group Policy, optimizes keyboard and mouse polling rates, thread scheduling, and USB interrupt timing, though a few early issues with multi-monitor stutter and AMD chipset compatibility have been reported.
Windows 11 June 2026 Media Refresh: New USB Install Baseline 25H2 (26200.8655)
Microsoft's June 2026 Media Creation Tool refresh delivers Windows 11 25H2 build 26200.8655, integrating June Patch Tuesday fixes. This update simplifies clean installs by reducing post-setup patching, includes the latest Secure Boot protections, and aligns with a faster media refresh cadence.
Windows Server 2025 DNS over HTTPS (GA): Encrypt Internal Name Resolution
Microsoft has released general availability of DNS over HTTPS for Windows DNS Server in Windows Server 2025 via the June 2026 Patch Tuesday updates. This allows enterprises to encrypt internal DNS queries using HTTPS, enhancing security against eavesdropping and spoofing, with support for PKI certificates and Group Policy management.
Windows 11 KB5094126 Secretly Adds Low Latency Profile to Speed Up Start Menu and Search
Microsoft's June 2026 security update KB5094126 for Windows 11 versions 25H2 and 24H2 contains a hidden Low Latency Profile that makes the Start menu and search box more responsive. The feature can be enabled via ViVeTool and reduces input lag by prioritizing shell input threads. Early testers report noticeable improvements, though battery life impact on laptops is minimal.
June 2026 Patch Tuesday: 200+ Security Fixes—Restart Now and Prioritize Risk
Microsoft’s June 2026 Patch Tuesday delivers a record ~200 fixes, including multiple zero-days and critical RCEs in core services. Active exploits target SMB, BitLocker, and AI components, demanding immediate patching. Organizations must prioritize risk-based deployment to counter evolving threats.
June 2026 Windows Security Update Blocks Desktop.ini Folder Icons via Trust
Microsoft’s June 9, 2026 security update for Windows 10, 11, and Server blocks loading of desktop.ini files that lack a trusted Mark of the Web zone identifier, reverting custom folder icons to defaults. The change is a security hardening measure against malicious icon handlers, but it disrupts personalization and corporate folder templates. Workarounds include manually unblocking files, using Group Policy to elevate network zones, or applying registry overrides.
Teams Automatic Work Location Updates vs June Patch Tuesday: Privacy, Governance, Security
Microsoft’s automatic work location feature via Places raises critical privacy and governance questions as it collides with June Patch Tuesday security updates. The article explores how Wi-Fi-based location detection works, the vulnerabilities patched in June, and the best practices for a secure, privacy-respecting rollout.
Microsoft Edge Stable Moves to 2-Week Releases: What IT, Users, and Devs Should Do
Microsoft will accelerate Edge Stable to a two-week major release cycle starting with version 152 in August 2026, while preserving the Extended Stable channel for enterprises. This change reduces security patch lag, demands automated testing from IT and developers, and signals a broader industry shift toward faster browser updates.
KB5094126 for Windows 11: Low Latency Profile Makes Start and Search Feel Faster
Microsoft's KB5094126 update for Windows 11, released on June 9, 2026, introduces a Low Latency Profile that speeds up the Start menu and Search. It applies to versions 24H2 and 25H2, bringing builds 26100.8655 and 26200.8655, alongside the usual security fixes. The performance tweak optimizes CPU and I/O priority for shell interactions, delivering a noticeable snappiness boost.