April 2026 Patch Tuesday: Two Zero-Days and Eight Critical Vulnerabilities Among 164 CVEs
ID: 630d16d6-4de1-556b-af3a-8b57d51ccdf8
STIX ID: report--630d16d6-4de1-556b-af3a-8b57d51ccdf8
Feed Name: Crowdstrike Blog
Threat Score
This bulletin lists and summarizes multiple Microsoft vulnerabilities disclosed in Patch Tuesday, including several critical remote code execution flaws (notably in Windows IKE, TCP/IP, Remote Desktop, Office/Word, and Active Directory), an exploited zero-day in SharePoint (CVE-2026-32201), and a publicly disclosed elevation-of-privilege issue in Microsoft Defender (CVE-2026-33825) with proof-of-concept code; fixes and mitigation guidance are available.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.