Microsoft June / July 2026 Security Updates

June 2026 Security Updates

This release consists of the following 206 Microsoft CVEs:
Tag CVE Base Score CVSS Vector Exploitability FAQs? Workarounds? Mitigations?

Nuance PowerScribe CVE-2026-26142
Microsoft Azure Kubernetes Service CVE-2026-32193
Microsoft Office SharePoint CVE-2026-33113
Microsoft Azure Attestation service and Device Health Attestation Service CVE-2026-33828
Windows Ancillary Function Driver for WinSock CVE-2026-34335
Microsoft Dynamics 365 (on-premises) CVE-2026-40371
Visual Studio Code CVE-2026-40376
Windows Universal Disk Format File System Driver (UDFS) CVE-2026-40404
Windows Universal Disk Format File System Driver (UDFS) CVE-2026-40409
Microsoft Kinect CVE-2026-41092
Azure Stack Edge CVE-2026-41098
Microsoft Windows DNS CVE-2026-41108
M365 Copilot CVE-2026-42824
Windows Projected File System Filter Driver CVE-2026-42828
Windows Administrator Protection CVE-2026-42829
Microsoft Teams for Android CVE-2026-42835
Function Discovery Service (fdwsd.dll) CVE-2026-42836
Windows Projected File System Filter Driver CVE-2026-42837
Microsoft PowerToys CVE-2026-42902
Windows Kerberos CVE-2026-42903
Windows TCP/IP CVE-2026-42904
Windows DWM Core Library CVE-2026-42905
Windows Shell CVE-2026-42906
Windows Shell CVE-2026-42907
Windows RDP CVE-2026-42908
Remote Desktop Client CVE-2026-42909

Windows Hotpatch Monitoring Service CVE-2026-42910
Windows Ancillary Function Driver for WinSock CVE-2026-42911
Windows Telephony Service CVE-2026-42912
Remote Desktop Client CVE-2026-42913
Windows Kerberos CVE-2026-42914
Windows TCP/IP CVE-2026-42915
Windows NT OS Kernel CVE-2026-42916
Windows Telephony Service CVE-2026-42968
Windows Push Notifications CVE-2026-42969
Windows Push Notifications CVE-2026-42970
Windows Push Notifications CVE-2026-42971
Role: Windows Hyper-V CVE-2026-42972
Windows Push Notifications CVE-2026-42973
Windows Performance Monitor CVE-2026-42974
Windows Push Notifications CVE-2026-42977
Windows Push Notifications CVE-2026-42978
Windows Push Notifications CVE-2026-42979
Windows NT OS Kernel CVE-2026-42980
Windows Performance Monitor CVE-2026-42981
Windows DWM Core Library CVE-2026-42983
Windows Kernel CVE-2026-42984
Remote Desktop Client CVE-2026-42985
Microsoft Graphics Component CVE-2026-42986
Windows Deployment Services CVE-2026-42987
Winlogon CVE-2026-42989
Windows Push Notifications CVE-2026-42991

Remote Desktop Client CVE-2026-42992
Remote Desktop Client CVE-2026-42993
Remote Desktop Client CVE-2026-44799
Remote Desktop Client CVE-2026-44801
Windows DWM Core Library CVE-2026-44802
Windows Win32K - GRFX CVE-2026-44803
Windows DWM Core Library CVE-2026-44804
Windows Network Controller (NC) Host Agent CVE-2026-44805
Windows DWM Core Library CVE-2026-44807
Windows DWM Core Library CVE-2026-44808
Windows Common Log File System Driver CVE-2026-44809
Windows Cryptographic Services CVE-2026-44810
Windows DWM Core Library CVE-2026-44811
Windows Win32K - GRFX CVE-2026-44812
Windows DWM Core Library CVE-2026-44813
Windows DWM Core Library CVE-2026-44814
Windows DHCP Client CVE-2026-44815

Microsoft Office Excel CVE-2026-44817
Microsoft Office Excel CVE-2026-44818
Microsoft Office CVE-2026-44819
Microsoft Office Excel CVE-2026-44820
Microsoft Office CVE-2026-44821
Microsoft Office Excel CVE-2026-44822
Microsoft Office Excel CVE-2026-44823
Microsoft Office CVE-2026-44824
Microsoft Office SharePoint CVE-2026-45453
Microsoft Office SharePoint CVE-2026-45454
Microsoft Office Excel CVE-2026-45455
Microsoft Office CVE-2026-45456
Microsoft Office Word CVE-2026-45457
Microsoft Office CVE-2026-45458
Microsoft Office Excel CVE-2026-45459
Microsoft Office CVE-2026-45460
Microsoft Office CVE-2026-45461
Microsoft Office SharePoint CVE-2026-45462
Microsoft Office CVE-2026-45463
Microsoft Office SharePoint CVE-2026-45464
Microsoft Office SharePoint CVE-2026-45465
Microsoft Office Word CVE-2026-45466
Microsoft Office SharePoint CVE-2026-45467
Microsoft Office SharePoint CVE-2026-45468
Microsoft Office Excel CVE-2026-45469
Microsoft Office Word CVE-2026-45471
Microsoft Office CVE-2026-45472
Microsoft Office CVE-2026-45474
Microsoft Office CVE-2026-45475

Linux MANA Driver CVE-2026-45476
Microsoft Office SharePoint CVE-2026-45479
Microsoft Office SharePoint CVE-2026-45481
GitHub Copilot and Visual Studio Code CVE-2026-45482
Microsoft Office Project CVE-2026-45483
Microsoft Office SharePoint CVE-2026-45484
Microsoft Office CVE-2026-45485
Microsoft Office Word CVE-2026-45486
Windows Program Compatibility Assistant Service CVE-2026-45487
.NET CVE-2026-45490
.NET CVE-2026-45491
Microsoft Copilot CVE-2026-45497
Microsoft Exchange Server CVE-2026-45500
Microsoft Exchange Server CVE-2026-45501
Microsoft Exchange Server CVE-2026-45502
Microsoft Exchange Server CVE-2026-45503
Microsoft Exchange Server CVE-2026-45504
Microsoft Exchange Server CVE-2026-45583
Windows Collaborative Translation Framework CVE-2026-45586

Windows Secure Boot CVE-2026-45588
ASP.NET Core CVE-2026-45591
Windows Internet (wininet.dll) CVE-2026-45592
Windows SDK CVE-2026-45593
Windows Application Identity (AppID) Subsystem CVE-2026-45594
Windows Mark of the Web (MOTW) CVE-2026-45595
Windows Ancillary Function Driver for WinSock CVE-2026-45596
UI Automation Manager (uiamanager.dll) CVE-2026-45597
Windows Ancillary Function Driver for WinSock CVE-2026-45598
Universal Plug and Play (upnp.dll) CVE-2026-45599
Windows Kernel-Mode Drivers CVE-2026-45600
Windows Ancillary Function Driver for WinSock CVE-2026-45601
Windows DHCP Server CVE-2026-45602
Windows Ancillary Function Driver for WinSock CVE-2026-45603
Windows Application Identity (AppID) Subsystem CVE-2026-45604
Windows Bluetooth Service CVE-2026-45605
Microsoft UxTheme Library (uxtheme.dll) CVE-2026-45606
Windows Hyper-V CVE-2026-45607
Windows DHCP Client CVE-2026-45608
Windows DHCP Server CVE-2026-45634
Universal Plug and Play (upnp.dll) CVE-2026-45635
Windows NTFS CVE-2026-45636
Windows DWM Core Library CVE-2026-45637
Windows Ancillary Function Driver for WinSock CVE-2026-45638
Windows RDP CVE-2026-45639
Windows Bluetooth Port Driver CVE-2026-45640

Role: Windows Hyper-V CVE-2026-45641
Microsoft Azure Attestation service and Device Health Attestation Service CVE-2026-45642
Microsoft Office Word CVE-2026-45643
Microsoft Live Share Canvas SDK CVE-2026-45644
Microsoft Office CVE-2026-45645
Microsoft Defender for Endpoint CVE-2026-45647
Active Directory Domain Services CVE-2026-45648
Office for Android CVE-2026-45649
Microsoft Bing CVE-2026-45650
Windows Kernel CVE-2026-45653
Windows Secure Boot CVE-2026-45654
Windows BitLocker CVE-2026-45655
Windows UEFI CVE-2026-45656
Windows Kernel CVE-2026-45657
Windows BitLocker CVE-2026-45658
Visual Studio Code CVE-2026-47281
Visual Studio Code CVE-2026-47284
Visual Studio Code CVE-2026-47287
Windows Kerberos CVE-2026-47288
Remote Desktop Client CVE-2026-47289
Windows HTTP.sys CVE-2026-47291
Visual Studio Code CVE-2026-47292
Microsoft Office Click-To-Run CVE-2026-47293

Microsoft Office SharePoint CVE-2026-47298
Microsoft Office SharePoint CVE-2026-47634
Microsoft Office CVE-2026-47635
Microsoft Office SharePoint CVE-2026-47636
Microsoft Office SharePoint CVE-2026-47637
Microsoft Office SharePoint CVE-2026-47638
Microsoft Office SharePoint CVE-2026-47639
Microsoft Office SharePoint CVE-2026-47640
Microsoft Office SharePoint CVE-2026-47641
Azure Stack Edge CVE-2026-47643
Copilot Chat (Microsoft Edge) CVE-2026-47644
Windows Storage CVE-2026-47648
Windows Hyper-V CVE-2026-47652
Remote Desktop Client CVE-2026-47653
Remote Desktop Client CVE-2026-47654
Microsoft Graph CVE-2026-47655
Windows Boot Manager CVE-2026-47656
Microsoft Office SharePoint CVE-2026-48560
Microsoft Office SharePoint CVE-2026-48562
Remote Desktop Client CVE-2026-48563
Windows Narrator Braille CVE-2026-48565
Windows DWM Core Library CVE-2026-48566
Azure HorizonDB CVE-2026-48567
Windows Secure Boot CVE-2026-48568

Visual Studio Code CVE-2026-48569
Windows Secure Boot CVE-2026-48570
Windows Secure Boot CVE-2026-48573
Windows Media CVE-2026-48574
Windows Secure Boot CVE-2026-48575
Windows Secure Boot CVE-2026-48576
Windows Secure Boot CVE-2026-48578
Microsoft Exchange Online CVE-2026-48579
Windows Kernel CVE-2026-48583
HTTP/2 CVE-2026-49160
Microsoft PC Manager CVE-2026-49161
Windows BitLocker CVE-2026-50507
Windows NTLM CVE-2026-50508

We are republishing 362 non-Microsoft CVEs (Chrome CVEs not listed):
CNA Tag CVE FAQs? Workarounds? Mitigations?
Arm Limited Windows Kernel CVE-2025-10263
CERT/CC Windows UEFI CVE-2026-8863

Security Update Guide Blog Posts
Date Blog Post
October 31, 2025 You asked, we delivered: Introducing new features for an improved security experience
October 28, 2025 Understanding CVE-2025-55315: What CISOs, security engineers, and sysadmins should know
October 22, 2025 Toward greater transparency: Introducing machine-readable Vulnerability Exploitability Xchange (VEX) for Azure Linux and beyond
November 12, 2024 Toward greater transparency: Publishing machine-readable CSAF files
June 27, 2024 Toward greater transparency: Unveiling Cloud Service CVEs
April 9, 2024 Toward greater transparency: Security Update Guide now shares CWEs for CVEs
January 6, 2023 Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API
January 11, 2022 Coming Soon: New Security Update Guide Notification System
February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API
January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners
December 8, 2020 Security Update Guide: Let’s keep the conversation going
November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide
Relevant Resources

• 
  
  
  • The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
  • Windows 10 and Windows 11 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10 and Windows 11, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 and Windows 11 operating systems, please see Windows Lifecycle Facts Sheet.
  • Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
  • A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
  • Customers running Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

Known Issues
You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.

For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).

KB Article Applies To
5089549 Windows 11, version 24H2, Windows 11, version 25H2
5094125 Windows Server 2025
5094127 Windows 10, version 21H2, Windows 10, version 22H2
5094128 Windows Server 2022
Released: Jun 9, 2026

June 2026 Security Updates - Release Notes - Security Update Guide - Microsoft