TheWindowsUpdate.com

Access of resource using incompatible type (‘type confusion’) in Microsoft Office allows an unauthorized attacker to execute code locally. Continue reading CVE-2026-26110 Microsoft Office Remote Code Execution Vulnerability→

[CVE-2026-26030](https://www.cve.org/CVERecord?id=CVE-2026-26030) is a Remote Code Execution vulnerability that has been identified in Microsoft Semantic Kernel Python SDK, specifically within the InMemoryVectorStore filter functionality. GitHub create… Continue reading CVE-2026-26030 GitHub: CVE-2026-26030 Microsoft Semantic Kernel InMemoryVectorStore filter functionality vulnerable→

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2026-26109 Microsoft Excel Remote Code Execution Vulnerability→

Improper neutralization of input during web page generation (‘cross-site scripting’) in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2026-26144 Microsoft Excel Information Disclosure Vulnerability→

Dependency on vulnerable third-party component in GitHub Repo: zero-shot-scfoundation allows an unauthorized attacker to execute code over a network. Continue reading CVE-2026-23654 GitHub: Zero Shot SCFoundation Remote Code Execution Vulnerability→

Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2026-23661 Azure IoT Explorer Information Disclosure Vulnerability→

Missing authentication for critical function in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2026-23662 Azure IoT Explorer Information Disclosure Vulnerability→

Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. Continue reading CVE-2026-26106 Microsoft SharePoint Server Remote Code Execution Vulnerability→