CVE-2026-21226: Azure Core shared client library for Python Remote Code Execution Vulnerability

CVE-2026-20941: Host Process for Windows Tasks Elevation of Privilege Vulnerability

CVE-2026-20958: Microsoft SharePoint Information Disclosure Vulnerability

CVE-2026-20957: Microsoft Excel Remote Code Execution Vulnerability

CVE-2026-20952: Microsoft Office Remote Code Execution Vulnerability

Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface (TWINUI) Subsystem allows an authorized attacker to disclose information locally.

Headline

CVE-2026-20827: Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure Vulnerability

Microsoft Security Response Center: Latest News