—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Multiple Vulnerabilities in Microsoft Products

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: High

Software Affected

Microsoft Windows

Microsoft Office

Microsoft Dynamics

Developer Tools

SQL Server

Extended Security Updates (ESU) for legacy Microsoft products

Azure

Apps

Overview

Multiple vulnerabilities have been reported in Microsoft products that could allow an attacker to gain elevated privileges, obtain sensitive information, execute arbitrary code remotely, bypass security restrictions, conduct spoofing attacks, perform tampering of data or system processes, or cause denial-of-service (DoS) conditions.

Target Audience:

Individuals and IT administrators, security teams responsible for maintaining and updating Microsoft products.

Risk Assessment:

Risk of remote code execution, system instability or sensitive information disclosure.

Impact Assessment:

Potential compromise of system, exfiltration of data, ransomware attacks or system crashes.

Description

Multiple vulnerabilities have been reported in Microsoft products that could allow an attacker to gain elevated privileges, obtain sensitive information, execute arbitrary code remotely, bypass security restrictions, conduct spoofing attacks, perform tampering of data or system processes, or cause denial-of-service (DoS) conditions.

For complete list of affected products, CVEs, workarounds and solutions, refer to the Microsoft security updates.

https://msrc.microsoft.com/update-guide/releaseNote/2026-May

Solution

Apply appropriate security updates as mentioned in  

https://msrc.microsoft.com/update-guide/releaseNote/2026-May

Vendor Information

Microsoft

https://msrc.microsoft.com/update-guide/

References

 

https://msrc.microsoft.com/update-guide/releaseNote/2026-May

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmoF3A4ACgkQ3jCgcSdc

ys/VFw//QXgP81md7oDvgxWW4MGXkVthe1b0l43XOBJQ8NEfpL7HGu0r0gqGs3xR

sLsiZ41e59fExaYslI6u4fGO5BQ1pEbeRcS9zy3L7vMaoY9hpvbhfG4+5GpvXne+

mFvF2vnu6lb9udsgC8SMtvm0BWpRu5W/Lufx/Y/L05Gx+k+0TbPAUoFOvy7eYsoZ

8R9xVxvLjC8YAYvmNMFw9Gh+LtxcrIfAKbxyBuv2OxhBPokuQP4pcJ6Y0h7/Wj3x

RPQH6VQzHCz2kO0O+8w9MZ9rs8YuX/IwmNl8UyzJny5D3e9dA3goWnR7aHDyDHB1

nS6D5jn2G8/PV4CFS0wt1PnL68SFY6FIZz2Q1bI74LHw/9AMXU06idH9kW0I7Njy

cH70VnERgsLwD22i4C153rlaN3mpIhdD8r/EIIPHlQl4J+lgTy4n6tIFs842rqrH

ZBzFteBELOA4udkOaDPXsdmWHPbYFUMF5ZFLcxdGMMlHyc5vdKBexv/tkxZtQhx+

hJzuhD6x0bYrlbfES3PgfsH82JMewfdMGeQrz6DKOiHWO8b67pAJdAlsSLszCkCV

qYCTklmA+cAYm9dt8DOQ3SjTvxGGRzcynpBrILfOU7Muq8s1NIgbo2aLBAQd64Ys

rAFS/B4Fei7bCiutXsQeoxxPiv7MEeX4vwifqEyeU7/fP2pwSiA=

=Er/2

—–END PGP SIGNATURE—–