Microsoft May 2026 Patch Tuesday fixes 120 flaws, no zero-days
The update includes 16 critical flaws, and Microsoft said none were active zero-days or previously disclosed bugs.
- Microsoft released software updates addressing at least 118 security vulnerabilities on the second Tuesday of May for various Windows operating systems and other products, as cataloged by the SANS Internet Storm Center.
- This May Patch Tuesday offers a welcome respite from April, which saw Microsoft fix 167 security flaws, and marks the first time in nearly two years the company is not addressing emergency zero-day flaws.
- Sixteen vulnerabilities earned Microsoft's "critical" label, including CVE-2026-41089, a Windows Netlogon stack-based buffer overflow that offers attackers SYSTEM privileges on domain controllers, Rapid7 researchers reported.
- Microsoft leveraged "Project Glasswing," an AI capability developed by Anthropic, to identify these security vulnerabilities; Apple and other tech giants similarly utilize the tool to improve code integrity.
- Reflecting broader industry trends, Mozilla resolved 271 vulnerabilities last month and Google fixed 127 security flaws in Chrome, signaling accelerated patch cycles across major technology vendors.
13 Articles
13 Articles
Patch Tuesday, May 2026 Edition
Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of the more widely-used software makers — including Apple, Google, Microsoft, Mozilla and Oracle — fixing near record volumes of security bugs, and/or quickening the tempo of their patch release…
TechRepublic
IT Security News - cybersecurity, infosecurity newsMicrosoft’s Patch Tuesday Update Targets 120 Security Flaws
Microsoft’s May Patch Tuesday fixes 120 flaws, including 31 remote code execution bugs, with no zero-days reported at release.
If the volume of security vulnerabilities to be corrected continues to increase, there is a noticeable lull on the front of the faults actively exploited with Microsoft's Patch Tuesday of May 2026.
After Apple had released a series of new patches for its operating systems at the start of the week, mainly operating system maintenance, Microsoft also moved on Tuesday.
Microsoft has just released its May 2026 Patch Tuesday. The company is patching no fewer than 120 security vulnerabilities, including 17 critical ones, but none that are zero-day exploits. However, three particularly dangerous vulnerabilities affect components used daily by millions of businesses.
Coverage Details
Bias Distribution
- 100% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium
