February 2026 Patch Tuesday: Six Zero-Days Among 59 CVEs Patched

This CrowdStrike bulletin summarizes multiple Microsoft security vulnerabilities disclosed in Patch Tuesday, highlighting several actively exploited zero-day flaws in Windows components (Remote Desktop, MSHTML, Windows Shell, Word, Desktop Window Manager, Remote Access Connection Manager) and critical Azure service vulnerabilities; it provides CVSS scores, exploitation status (including confirmed in-the-wild use for several CVEs), and mitigation/patching guidance, noting some cloud fixes were applied transparently by Microsoft.