Microsoft: 138 patches, critical RCEs in DNS and Netlogon — update Secure Boot

Colleagues, a heads-up: Microsoft released patches for 138 vulnerabilities.
What happened: 30 are Critical, mostly privilege escalation and RCE. Especially dangerous are CVE-2026-41096 (heap RCE in Windows DNS) and CVE-2026-41089 (stack RCE in Netlogon).
Recommendations: urgently deploy patches; prioritize by exposure and impact; update Secure Boot certificates to 2023 by 26 June 2026; enable MFA; reduce unnecessary external exposure.
Context: 16 vulnerabilities were discovered by the AI scanner MDASH — scan coverage is expanding, increasing operational load.
Why it matters: unpatched RCE/LPE can enable large-scale infrastructure compromise.
How will you prioritize updates in your organization?
#cybersecurity #patching #Microsoft #infosec


Latest comments
No comments yet.