CVE-2026-21226: Azure Core shared client library for Python Remote Code Execution Vulnerability

CVE-2026-20941: Host Process for Windows Tasks Elevation of Privilege Vulnerability

CVE-2026-20927: Windows SMB Server Denial of Service Vulnerability

CVE-2026-20926: Windows SMB Server Elevation of Privilege Vulnerability

CVE-2026-20925: NTLM Hash Disclosure Spoofing Vulnerability

Concurrent execution using shared resource with improper synchronization ('race condition') in Tablet Windows User Interface (TWINUI) Subsystem allows an authorized attacker to elevate privileges locally.

Headline

CVE-2026-20826: Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure Vulnerability

Microsoft Security Response Center: Latest News