Microsoft Releases May 2026 Security Updates
Scheduled updates for Microsoft products address 137 vulnerabilities
Summary
Scheduled updates for Microsoft products address 137 vulnerabilities
Affected platforms
The following platforms are known to be affected:
The following platforms are also known to be affected:
Multiple other Microsoft platforms. Please see Microsoft's May 2026 Security Updates guide for full details.
Threat details
Introduction
Microsoft has released security updates to address 137 vulnerabilities in Microsoft products, which includes the following critical vulnerabilities.
- CVE-2026-41089 - a remote code execution (RCE) vulnerability with a CVSSv3 score of 9.8 arising from a stack-based buffer overflow weakness in Windows Netlogon.
- CVE-2026-41096 - a RCE Vulnerability with a CVSSv3 score of 9.8 arising from a heap-based overflow weakness in Windows DNS Client.
-
CVE-2026-41103 - a privilege escalation vulnerability with a CVSSv3 score of 9.1 arising from a critical 'Incorrect Implementation of Authentication Algorithm' weakness in Microsoft SSO Plugin for Jira & Confluence.
Windows Autopatch is enabling hotpatch security updates by default
Starting with the May 2026 Windows security update, Microsoft is enabling hotpatch security updates by default for eligible devices. This change impacts all eligible devices managed by Microsoft Intune, and applies whether you use Windows Autopatch through Microsoft Intune or the Windows updates API in Microsoft Graph.
For more details, please see Microsoft's Securing devices faster with hotpatch updates on by default blog post.
Remediation advice
Affected organisations are encouraged to review Microsoft's May 2026 Security Updates and apply the relevant updates as soon as possible.
Definitive source of threat updates
CVE Vulnerabilities
Last edited: 13 May 2026 1:39 pm