Microsoft’s Patch Tuesday for June 2026 (released 2026-06-17) fixes 810 vulnerabilities, including 40 rated Critical. No actively exploited zero-days were disclosed this month.
Breakdown by severity
| Severity | Count |
|---|---|
| Low | 501 |
| Important | 216 |
| Moderate | 53 |
| Critical | 40 |
Zero-days & publicly disclosed
| CVE | Status | CVSS | Title |
|---|---|---|---|
| CVE-2026-50656 | Publicly disclosed | 7.8 | Microsoft Defender Elevation of Privilege Vulnerability |
| CVE-2026-45586 | Publicly disclosed | 7.8 | Windows Collaborative Translation Framework (CTFMON) Elevation of Privilege Vulnerability |
| CVE-2026-49160 | Publicly disclosed | 7.5 | HTTP.sys Denial of Service Vulnerability |
| CVE-2026-50507 | Publicly disclosed | 6.8 | Windows BitLocker Security Feature Bypass Vulnerability |
Priority guidance
Patch the actively exploited items first, then Critical remote-code-execution fixes. Deploy and verify across your fleet with Action1, Automox, ManageEngine Patch Manager Plus, ManageEngine Endpoint Central — see best patch management.