Patch Tuesday, April 2026 Edition

Microsoft pushed fixes for 167 security vulnerabilities, spotlighting an actively exploited SharePoint Server zero-day (CVE-2026-32201) and a Windows Defender privilege-escalation flaw dubbed “BlueHammer” (CVE-2026-33825) for which exploit code was publicly released; Adobe Reader also received an emergency patch for an actively exploited RCE (CVE-2026-34621), and Google Chrome fixed a zero-day. The report emphasizes active exploitation, published proof-of-concept code, broad product impact (SharePoint, Windows, Adobe, browsers), and urges prompt patching and browser restarts while linking to further patch roundup resources.