Microsoft Patch Tuesday April 2026 Fixes 168 Flaws, Including an Actively Exploited Zero-Day - gbhackers.com

CVE/vulnerabilityCyber Security NewsMicrosoft 4 min.Read Microsoft Patch Tuesday April 2026 Fixes 168 Flaws, Including an Actively Exploited Zero-Day By Divya April 15, 2026 Share Facebook Twitter Pinterest WhatsApp Microsoft has released its highly anticipated April 2026 Patch Tuesday security updates, addressing a massive 168 vulnerabilities across its vast product portfolio. According to recent cybersecurity news reports, this comprehensive update includes a patch for one actively exploited zero-day vulnerability and dozens of elevation of privilege flaws. Organizations and system administrators are strongly urged to apply these vital security fixes immediately to protect their networks from active threats. The most critical concern in this month’s release is CVE-2026-32201, a spoofing vulnerability found in Microsoft SharePoint Server. Cybersecurity news sources confirm that threat actors are actively exploiting this zero-day flaw in the wild. Because businesses heavily rely on SharePoint for daily document management and team collaboration, this vulnerability presents a significant enterprise risk. Security teams must prioritize patching this specific server flaw immediately to prevent ongoing attacks and unauthorized network spoofing. Critical Elevation and Disclosure Flaws Beyond the zero-day threat, the Microsoft Security Response Center (MSRC) highlighted several important vulnerabilities based on their Security Update Guide that require immediate customer action. Key fixes include: Azure Data Studio (CVE-2024-26203): This important elevation of privilege vulnerability allows a local attacker to bypass security restrictions and increase their system permissions. Successful exploitation can lead to a complete compromise of system confidentiality and integrity. Xbox Gaming Services (CVE-2024-28916): An elevation of privilege flaw located within the XBox Crypto Graphic Services that could grant attackers higher access rights. .NET Framework (CVE-2024-29059): Rated as an important information disclosure vulnerability that could expose sensitive system data to unauthorized users. Outlook for Android (CVE-2024-26204): Another vital information disclosure flaw that specifically targets mobile email users, requiring urgent app updates. The April patch cycle also delivers numerous security improvements for the Chromium-based Microsoft Edge browser. The updates resolve a low-severity spoofing bug (CVE-2024-29057) and several security feature bypasses (CVE-2024-26246, CVE-2024-26247). Additionally, Microsoft integrated crucial upstream Chromium patches. These fixes resolve severe memory management issues, including use-after-free vulnerabilities impacting WebCodecs (CVE-2024-2886), Dawn (CVE-2024-2885), Canvas (CVE-2024-2627), and ANGLE (CVE-2024-2883). The release also addresses type confusion in WebAssembly (CVE-2024-2887) and out-of-bounds reading in Swiftshader (CVE-2024-2626). For mobile users, several implementation and interface bugs specific to Edge on iOS were fully resolved (CVE-2024-2628, CVE-2024-2629, CVE-2024-2630). The update extends to Mariner and integrated open-source tools. Microsoft patched serious directory traversal (CVE-2024-27318) and out-of-bounds read (CVE-2024-27319) flaws within the ONNX package. The company also fixed multiple Linux vulnerabilities, preventing out-of-bounds memory access in LoongArch (CVE-2024-26588) and resolving dangerous race conditions in TLS operations (CVE-2024-26583, CVE-2024-26585). Recommended Mitigation Strategies To maintain strong network defense, security professionals advise the following actions: Deploy the April 2026 security updates across all Microsoft servers immediately, prioritizing public-facing SharePoint environments. Update Azure Data Studio and enforce the principle of least privilege for all local user accounts. Ensure automated updates are active for Microsoft Edge and mobile applications like Outlook for Android. Continuously monitor system logs for unusual privilege escalation attempts, spoofing behaviors, or unauthorized network access. CVE entries CVE Title / Description Type Severity Product / Component CVE-2024-29059 .NET Framework Information Disclosure Vulnerability Information Disclosure Important .NET Framework CVE-2024-29057 Microsoft Edge (Chromium-based) Spoofing Vulnerability Spoofing Low Microsoft Edge (Chromium-based) CVE-2024-28916 Xbox Gaming Services Elevation of Privilege Vulnerability Elevation of Privilege Important XBox Crypto Graphic Services CVE-2024-2887 Chromium: Type Confusion in WebAssembly Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-2886 Chromium: Use after free in WebCodecs Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-2885 Chromium: Use after free in Dawn Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-28849 Proxy-Authorization header kept across hosts in follow-redirects Not stated Not stated Mariner CVE-2024-2883 Chromium: Use after free in ANGLE Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-27319 onnx out-of-bounds read due to off-by-one string copy Out-of-bounds Read Not stated Mariner CVE-2024-27318 onnx directory traversal via external_data path Directory Traversal Not stated Mariner CVE-2024-27308 Mio’s tokens for named pipes may be delivered after deregistration Not stated Not stated Mariner CVE-2024-27289 pgx SQL Injection via Line Comment Creation SQL Injection Not stated Mariner CVE-2024-26594 ksmbd: validate mech token in session setup Not stated Not stated Mariner CVE-2024-26588 LoongArch: BPF: Prevent out-of-bounds memory access Out-of-bounds Memory Access Not stated Mariner CVE-2024-26587 net: netdevsim: don’t try to destroy PHC on VFs Not stated Not stated Mariner CVE-2024-26585 tls: fix race between tx work scheduling and socket close Race Condition Not stated Mariner CVE-2024-26583 tls: fix race between async notify and socket close Race Condition Not stated Mariner CVE-2024-26581 netfilter: nft_set_rbtree: skip end interval element from gc Not stated Not stated Mariner CVE-2024-26455 fluent-bit 2.2.2 contains a Use-After-Free vulnerability in custom_calyptia.c Use-After-Free Not stated Mariner CVE-2024-2631 Chromium: Inappropriate implementation in iOS Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-2630 Chromium: Inappropriate implementation in iOS Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-2629 Chromium: Incorrect security UI in iOS Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-2628 Chromium: Inappropriate implementation in Downloads Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-2627 Chromium: Use after free in Canvas Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-2626 Chromium: Out of bounds read in Swiftshader Out-of-bounds Read Not stated Microsoft Edge (Chromium-based) CVE-2024-2625 Chromium: Object lifecycle issue in V8 Not stated Not stated Microsoft Edge (Chromium-based) CVE-2024-26247 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Security Feature Bypass Low Microsoft Edge (Chromium-based) CVE-2024-26246 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Security Feature Bypass Low Microsoft Edge (Chromium-based) CVE-2024-26204 Outlook for Android Information Disclosure Vulnerability Information Disclosure Important Outlook for Android CVE-2024-26203 Azure Data Studio Elevation of Privilege Vulnerability Elevation of Privilege Important Azure Data Studio Verified CVSS subset CVE Verified CVSS Verified Severity Source CVE-2024-29059 7.5  High  .NET Framework Information Disclosure  CVE-2024-29057 4.3  Medium  Edge Spoofing  CVE-2024-28916 8.8  High  Xbox Gaming Services EoP  CVE-2024-26203 7.3  High  Azure Data Studio EoP  Follow us on Google News, LinkedIn, and X to Get Instant Updates and Set GBH as a Preferred Source in Google. Tags cyber security Cyber Security News Microsoft Divya Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world. Hot this week Infosec- Resources How To Access Dark Web Anonymously and know its Secretive and Mysterious Activities June 4, 2023 1 What is Deep Web The deep web, invisible web, or... SOC Architecture How to Build and Run a Security Operations Center (SOC Guide) – 2023 June 3, 2023 12 Today’s Cyber security operations center (CSOC) should have everything... Cyber Security News Network Penetration Testing Checklist – 2025 March 2, 2025 0 Network penetration testing is a cybersecurity practice that simulates... Cyber Security News Russian Hackers Bypass EDR to Deliver a Weaponized TeamViewer Component October 18, 2023 0 TeamViewer's popularity and remote access capabilities make it an... Checklist Web Server Penetration Testing Checklist – 2026 January 6, 2026 0 Web server pentesting is performed under three significant categories: identity,... Topics AcquisitionAdobeAdwareAIAmazonAmazon AWSAMDAndroidAnti VirusAntimalwareAntispoofingANY RUNApacheAPIAppleAPTArtificial IntelligenceAvastAWSAzureBackdoorBitcoinBluetoothBotnetBrowserBuffer over flowBug BountyBusinessChatbotsChatGPTChecklistChromeCiscoCISOCISO AdvisoryCloudCloud SecurityCloudflareComputer SecurityCourseCPUCross site ScriptingcryptocurrencyCryptocurrency hackCVE/vulnerabilityCyber AdvisoryCyber AICyber AttackCyber Crimecyber securityCyber security CourseCyber Security NewsCyber Security ResourcesDark WebData BreachData GovernanceDDOSDealsDeepSeekDiscordDNSDos AttackDriveDropboxEducationEmailEmail SecurityEthical HackingExploitExploitation ToolsExtratorrentsFACEBOOKFeaturedFirefoxFirefox NewsFirewallForensics ToolsgameGenAIGitHubGitLabGmailGoogleGoogle dorksGovernanceGRCHacking BooksHacksHardware HackingHBOHTMLHTTPIBMIISIncident ResponseInformation GatheringInformation Security RisksInfosec- ResourcesInsider ThreatsInstagramMore Cyber Security News Top 10 Best API Security Providers Protecting Web Apps in 2026 0 In the intricate tapestry of the modern digital world,... Cyber Security News Top 10 Best Application Security Testing Companies in 2026 0 In the rapidly evolving digital landscape of 2026, applications... Cyber Security News Google, Microsoft, Meta Accused of Tracking Users Even After Privacy Opt-Out 0 A recent independent audit conducted by privacy technology firm... cyber security MuddyWater-Style Hackers Probe 12,000+ Systems Ahead of Middle East 0 A threat group resembling MuddyWater has conducted a large-scale reconnaissance and... Cyber Security News Google Uses Rust-Based Firmware in Pixel 10 Modem to Improve Memory Safety 0  Google has officially integrated the memory-safe Rust programming language... cyber security Hackers Abuse Google Cloud Storage to Slip Remcos RAT Past Email Filters 0 Hackers are exploiting Google Cloud Storage to bypass email... cyber security Trusted WordPress Plugins Hijacked in 8-Month Stealth Backdoor Campaign 0 Hackers secretly planted a remote code-execution backdoor in more... CVE/vulnerability Windows Active Directory Flaw Opens Door to Malicious Code Execution 0 Microsoft disclosed a critical security vulnerability within Windows Active... Related Articles Top 10 Best API Security Providers Protecting Web Apps in 2026 Cyber Security News April 15, 2026 Top 10 Best Application Security Testing Companies in 2026 Cyber Security News April 15, 2026 Google, Microsoft, Meta Accused of Tracking Users Even After Privacy Opt-Out Cyber Security News April 15, 2026 MuddyWater-Style Hackers Probe 12,000+ Systems Ahead of Middle East cyber security April 15, 2026 Google Uses Rust-Based Firmware in Pixel 10 Modem to Improve Memory Safety Cyber Security News April 15, 2026 Recent News Top 10 Best API Security Providers Protecting Web Apps in 2026 Varshini - April 15, 2026 Top 10 Best Application Security Testing Companies in 2026 Varshini - April 15, 2026 Google, Microsoft, Meta Accused of Tracking Users Even After Privacy Opt-Out Divya - April 15, 2026 MuddyWater-Style Hackers Probe 12,000+ Systems Ahead of Middle East Mayura Kathir - April 15, 2026 Google Uses Rust-Based Firmware in Pixel 10 Modem to Improve Memory Safety Divya - April 15, 2026 Hackers Abuse Google Cloud Storage to Slip Remcos RAT Past Email Filters Mayura Kathir - April 15, 2026