Windows News
Microsoft has disclosed a critical vulnerability in the Azure Arc Connected Machine agent for Windows that enables local privilege escalation and cloud identity takeover. CVE-2026-26117 represents a...
Microsoft has cataloged CVE-2026-26128 as an elevation-of-privilege defect in the Windows SMB Server that allows an authorized (local) attacker to escalate privileges on affected systems. This...
Microsoft has documented CVE-2026-23656 as a Windows App Installer spoofing vulnerability that enables unauthenticated attackers to present spoofed installer interfaces or metadata by exploiting...
Microsoft's March 2026 security update includes a newly cataloged Windows Graphics Device Interface vulnerability tracked as CVE-2026-25190, a high-severity code-execution flaw that requires...
Microsoft has officially documented CVE-2026-25189, a confirmed use-after-free vulnerability in the Windows Desktop Window Manager (DWM) Core Library that enables local privilege escalation. The...
Microsoft's March 2026 Patch Tuesday update addresses a high-severity heap-based buffer overflow vulnerability in the Windows Telephony Service, cataloged as CVE-2026-25188. This security flaw could...
Microsoft has addressed a newly cataloged information disclosure vulnerability in the Windows Accessibility Infrastructure, tracked as CVE-2026-25186, affecting the ATBroker.exe helper process. This...
Microsoft has disclosed a critical Windows Shell Link processing vulnerability designated CVE-2026-25185 that enables network-level spoofing and information disclosure. The security flaw in how...
Microsoft has released a security update addressing CVE-2026-25181, an information disclosure vulnerability in the Windows Graphics Component (GDI+). The vulnerability, discovered through Microsoft's...
Microsoft has documented CVE-2026-25180 as a critical information disclosure vulnerability in the Windows Graphics Component, specifically an out-of-bounds read that could allow unprivileged local...
Microsoft has patched a critical local privilege escalation vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys) tracked as CVE-2026-25179. This kernel-level flaw allows...
Microsoft has disclosed a critical use-after-free vulnerability in the Ancillary Function Driver for WinSock (AFD.sys) component, designated CVE-2026-25178. This security flaw allows authenticated...
Use our category filters, tag system, or the search functionality to find specific Windows topics. Popular categories include Windows 11, Security, Gaming, and Updates.
While we aggregate news from various sources, you can engage with the community through the WindowsForum.com platform linked in our navigation.