Patch Tuesday

6 posts

/rogueplanet-windows-defender-zero-day/rogueplanet-windows-defender-zero-day.png

RoguePlanet Windows Defender Zero Day Hands Any User Full SYSTEM Control

June 10, 2026

Nightmare-Eclipse is back, with a new exploit called RoguePlanet. Windows 10 and 11 have a new zero-day that lets a user with no rights take complete control of …

/miniplasma-windows-zero-day-system-access/featured-image.png

MiniPlasma Windows Zero Day Gives Any User SYSTEM Access on a Fully Patched Machine

May 18, 2026

A Windows zero-day called MiniPlasma gives any standard user full SYSTEM access on a fully patched machine. Microsoft patched it in December 2020, assigned it …

/windows-dns-rce-2026/featured-image.png

A Critical Windows DNS Flaw Lets Attackers Run Code on Any Machine Without Logging In

May 13, 2026

Microsoft patched a critical heap buffer overflow in the Windows DNS Client. An attacker needs no account and no help from the person sitting at the machine to …

/windows-one-update-ten-problems/featured-image.png

One Windows Update, Ten Problems, Two Emergency Patches

January 28, 2026

Microsoft pushed one security update. It broke at least 10 different things. 114 security fixes. Two emergency patches. PCs that won’t boot. Outlook that …

/cve-2023-31096-microsoft-modem-driver-exploit/featured-image.png

CVE-2023-31096: Microsoft Modem Driver Exploit Fixed Three Years Later

January 14, 2026

In January 2026, Microsoft had already patched 114 vulnerabilities! Four modem drivers deleted since October. Companies that wrote them: gone. Source code: …

/sap-patch-tuesday-four-critical-vulnerabilities-cve-2026-0501/featured-image.png

SAP Just Got Breached: Four Critical Vulnerabilities Let Attackers Steal Financial Data (CVE-2026-0501)

January 13, 2026

SAP just patched four critical vulnerabilities SAP just patched four critical vulnerabilities. CVSS scores up to 9.9. One lets attackers run code with nothing …