The June 2026 Microsoft Patch Tuesday update addresses 206 vulnerabilities, including 32 critical ones affecting a broad range of Microsoft products and services. Critical vulnerabilities include heap-based buffer overflows, integer overflows, use-after-free, stack-based buffer overflows, improper authentication, and command injection flaws. Notable critical vulnerabilities with higher exploitation likelihood include CVE-2026-42985 (Remote Desktop Client heap overflow), CVE-2026-47291 (Windows HTTP Protocol Stack integer overflow), and CVE-2026-44803/CVE-2026-44812 (Windows Graphics integer overflow). Other critical issues affect Windows Kernel, Hyper-V, Microsoft Office, Azure Kubernetes Service, and Microsoft Exchange Online. Cisco Talos has published Snort 2 and Snort 3 rules to detect exploitation attempts. Microsoft has released official patches for these vulnerabilities as part of the monthly update.

Successful exploitation of these vulnerabilities could allow unauthorized remote code execution, local code execution, elevation of privileges, information disclosure, and denial of service across affected Microsoft products and services. Some vulnerabilities require network access without authentication, while others require local or authenticated access. Exploitation could lead to full system compromise, data exposure, or disruption of services. Microsoft has not reported any active exploitation in the wild at the time of this advisory.

Microsoft has released official patches for all disclosed vulnerabilities in the June 2026 Patch Tuesday update. Organizations should apply these updates promptly to mitigate risk. Cisco Talos has released Snort rules to detect exploitation attempts, which should be deployed and kept up to date. No vendor advisory indicates that no action is required or that vulnerabilities are already mitigated. Patch status is confirmed as official-fix via Microsoft’s monthly security update.