Microsoft and Major Vendors Patch Record Vulnerabilities
Microsoft and Major Vendors Patch Record Vulnerabilities
https://letsdatascience.com/news/microsoft-and-major-vendors-patch-record-vulnerabilities-d2d01bc3
Publish Date: 2026-05-12 17:46:00
Source Domain: letsdatascience.com
Per Krebs on Security, the May 2026 Patch Tuesday cycle saw Microsoft release updates addressing at least 118 security vulnerabilities across Windows and other products. Krebs reports 16 of those flaws carried Microsoft’s highest “critical” severity, and this is the first Patch Tuesday in nearly two years without fixes for active zero-day exploitation. Krebs cites security firm Rapid7 in highlighting several high-risk bugs, including a stack-based buffer overflow in Windows Netlogon that can yield SYSTEM privileges on domain controllers and a remote code execution issue in the Windows DNS client. Krebs also reports that companies including Apple, Google, Mozilla, and Oracle moved to fix large volumes of bugs, and that some vendors had access to Project Glasswing, an Anthropic AI capability Krebs describes as effective at surfacing code vulnerabilities.
