On-demand webinar: Building a secure and employee-centric digital workplace

WATCH NOW
Home »

Microsoft Patch Tuesday April 2026 - Summary

Apr 142026

Read Blog IconRead Blog
Watch Webinar Icon Watch webinar

190

Patches

165

Vulnerabilities

32

Articles

8

Impacts

CVE Index for April 2026 Patch Tuesday Updates

Vulnerable ComponentImpactCVE ID
Windows TCP/IPRemote Code ExecutionCVE-2026-33827
Windows Active DirectoryRemote Code ExecutionCVE-2026-33826
Windows Internet Key Exchange (IKE) Service ExtensionsRemote Code ExecutionCVE-2026-33824
Microsoft WordRemote Code ExecutionCVE-2026-33115
Microsoft WordRemote Code ExecutionCVE-2026-33114
Microsoft OfficeRemote Code ExecutionCVE-2026-32190
Remote Desktop ClientRemote Code ExecutionCVE-2026-32157
.NET FrameworkDenial of ServiceCVE-2026-23666
Vulnerable ComponentImpactCVE ID
Microsoft SharePoint ServerSpoofingCVE-2026-32201
Microsoft DefenderElevation of PrivilegeCVE-2026-33825
CVE IDSeverityImpact
CVE-2026-33104ImportantElevation of Privilege
CVE-2026-33103ImportantInformation Disclosure
CVE-2026-33101ImportantElevation of Privilege
CVE-2026-33100ImportantElevation of Privilege
CVE-2026-33099ImportantElevation of Privilege
CVE-2026-33098ImportantElevation of Privilege
CVE-2026-33096ImportantDenial of Service
CVE-2026-32631ImportantInformation Disclosure
CVE-2026-32225ImportantSecurity Feature Bypass
CVE-2026-32224ImportantElevation of Privilege
CVE-2026-32223ImportantElevation of Privilege
CVE-2026-32222ImportantElevation of Privilege
CVE-2026-32221ImportantRemote Code Execution
CVE-2026-32220ImportantSecurity Feature Bypass
CVE-2026-32219ImportantElevation of Privilege
CVE-2026-32218ImportantInformation Disclosure
CVE-2026-32217ImportantInformation Disclosure
CVE-2026-32215ImportantInformation Disclosure
CVE-2026-32202ImportantSpoofing
CVE-2026-32196ImportantSpoofing
CVE-2026-32195ImportantElevation of Privilege
CVE-2026-32184ImportantElevation of Privilege
CVE-2026-32183ImportantRemote Code Execution
CVE-2026-32181ImportantDenial of Service
CVE-2026-32165ImportantElevation of Privilege
CVE-2026-32164ImportantElevation of Privilege
CVE-2026-32163ImportantElevation of Privilege
CVE-2026-32162ImportantElevation of Privilege
CVE-2026-32160ImportantElevation of Privilege
CVE-2026-32159ImportantElevation of Privilege
CVE-2026-32158ImportantElevation of Privilege
CVE-2026-32156ImportantRemote Code Execution
CVE-2026-32153ImportantElevation of Privilege
CVE-2026-32151ImportantInformation Disclosure
CVE-2026-32150ImportantElevation of Privilege
CVE-2026-32149ImportantRemote Code Execution
CVE-2026-32093ImportantElevation of Privilege
CVE-2026-32091ImportantElevation of Privilege
CVE-2026-32090ImportantElevation of Privilege
CVE-2026-32089ImportantElevation of Privilege
CVE-2026-32088ImportantSecurity Feature Bypass
CVE-2026-32087ImportantElevation of Privilege
CVE-2026-32086ImportantElevation of Privilege
CVE-2026-32085ImportantInformation Disclosure
CVE-2026-32084ImportantInformation Disclosure
CVE-2026-32083ImportantElevation of Privilege
CVE-2026-32082ImportantElevation of Privilege
CVE-2026-32081ImportantInformation Disclosure
CVE-2026-32080ImportantElevation of Privilege
CVE-2026-32079ImportantInformation Disclosure
CVE-2026-32078ImportantElevation of Privilege
CVE-2026-32077ImportantElevation of Privilege
CVE-2026-32076ImportantElevation of Privilege
CVE-2026-32075ImportantElevation of Privilege
CVE-2026-32074ImportantElevation of Privilege
CVE-2026-32073ImportantElevation of Privilege
CVE-2026-32072ImportantSpoofing
CVE-2026-32071ImportantDenial of Service
CVE-2026-32070ImportantElevation of Privilege
CVE-2026-32069ImportantElevation of Privilege
CVE-2026-32068ImportantElevation of Privilege
CVE-2026-27931ImportantInformation Disclosure
CVE-2026-27930ImportantInformation Disclosure
CVE-2026-27929ImportantElevation of Privilege
CVE-2026-27928ImportantSecurity Feature Bypass
CVE-2026-27927ImportantElevation of Privilege
CVE-2026-27926ImportantElevation of Privilege
CVE-2026-27925ImportantInformation Disclosure
CVE-2026-27922ImportantElevation of Privilege
CVE-2026-27921ImportantElevation of Privilege
CVE-2026-27920ImportantElevation of Privilege
CVE-2026-27919ImportantElevation of Privilege
CVE-2026-27918ImportantElevation of Privilege
CVE-2026-27917ImportantElevation of Privilege
CVE-2026-27916ImportantElevation of Privilege
CVE-2026-27915ImportantElevation of Privilege
CVE-2026-27914ImportantElevation of Privilege
CVE-2026-27913ImportantSecurity Feature Bypass
CVE-2026-27912ImportantElevation of Privilege
CVE-2026-27911ImportantElevation of Privilege
CVE-2026-27910ImportantElevation of Privilege
CVE-2026-27909ImportantElevation of Privilege
CVE-2026-27908ImportantElevation of Privilege
CVE-2026-27907ImportantElevation of Privilege
CVE-2026-27906ImportantSecurity Feature Bypass
CVE-2026-26184ImportantElevation of Privilege
CVE-2026-26183ImportantElevation of Privilege
CVE-2026-26182ImportantElevation of Privilege
CVE-2026-26181ImportantElevation of Privilege
CVE-2026-26180ImportantElevation of Privilege
CVE-2026-26179ImportantElevation of Privilege
CVE-2026-26178ImportantElevation of Privilege
CVE-2026-26177ImportantElevation of Privilege
CVE-2026-26176ImportantElevation of Privilege
CVE-2026-26175ImportantSecurity Feature Bypass
CVE-2026-26174ImportantElevation of Privilege
CVE-2026-26173ImportantElevation of Privilege
CVE-2026-26172ImportantElevation of Privilege
CVE-2026-26170ImportantElevation of Privilege
CVE-2026-26169ImportantInformation Disclosure
CVE-2026-26168ImportantElevation of Privilege
CVE-2026-26167ImportantElevation of Privilege
CVE-2026-26166ImportantElevation of Privilege
CVE-2026-26165ImportantElevation of Privilege
CVE-2026-26163ImportantElevation of Privilege
CVE-2026-26162ImportantElevation of Privilege
CVE-2026-26161ImportantElevation of Privilege
CVE-2026-26160ImportantElevation of Privilege
CVE-2026-26159ImportantElevation of Privilege
CVE-2026-26156ImportantRemote Code Execution
CVE-2026-26155ImportantInformation Disclosure
CVE-2026-26154ImportantTampering
CVE-2026-26153ImportantElevation of Privilege
CVE-2026-26152ImportantElevation of Privilege
CVE-2026-26151ImportantSpoofing
CVE-2026-26149ImportantSecurity Feature Bypass
CVE-2026-26143ImportantSecurity Feature Bypass
CVE-2026-25250ImportantSecurity Feature Bypass
CVE-2026-23670ImportantSecurity Feature Bypass
CVE-2026-20930ImportantElevation of Privilege
CVE-2026-20928ImportantSecurity Feature Bypass
CVE-2026-20806ImportantInformation Disclosure
CVE-2026-0390ImportantSecurity Feature Bypass
CVE-2026-33829ModerateSpoofing
CVE-2026-32216ModerateDenial of Service
CVE-2026-32187LowDefense in Depth
CVE IDSeverityImpact
CVE-2026-33822ImportantInformation Disclosure
CVE-2026-33095ImportantRemote Code Execution
CVE-2026-32200ImportantRemote Code Execution
CVE-2026-32199ImportantRemote Code Execution
CVE-2026-32198ImportantRemote Code Execution
CVE-2026-32197ImportantRemote Code Execution
CVE-2026-33120ImportantRemote Code Execution
CVE-2026-32189ImportantRemote Code Execution
CVE-2026-32188ImportantInformation Disclosure
CVE-2026-32176ImportantElevation of Privilege
CVE-2026-32167ImportantElevation of Privilege
CVE-2026-23657ImportantRemote Code Execution
CVE-2026-20945ImportantSpoofing
CVE IDSeverityImpact
CVE-2026-32226ImportantDenial of Service
CVE-2026-32203ImportantDenial of Service
CVE-2026-32178ImportantSpoofing
CVE-2026-33116ImportantDenial of Service
CVE-2026-26171ImportantDenial of Service
CVE-2026-23653ImportantInformation Disclosure
CVE IDSeverityImpact
CVE-2026-32192ImportantElevation of Privilege
CVE-2026-32171ImportantElevation of Privilege
CVE-2026-32168ImportantElevation of Privilege
Vulnerable ComponentCVE IDSeverityImpact
Universal Plug and PlayCVE-2026-32214ImportantInformation Disclosure
CVE-2026-32212ImportantInformation Disclosure
HackerOne TLS PSK/ALPN Callback Exceptions Bypass Error HandlersCVE-2026-21637ModerateDenial of Service
Applocker Filter DriverCVE-2026-25184ImportantElevation of Privilege
AMD IOMMU Write BufferCVE-2023-20585ImportantTampering
Desktop Window ManagerCVE-2026-32155ImportantElevation of Privilege
CVE-2026-32154ImportantElevation of Privilege
CVE-2026-32152ImportantElevation of Privilege
CVE-2026-27924ImportantElevation of Privilege
CVE-2026-27923ImportantElevation of Privilege

Previous Patch Tuesday Updates and Fixes

Mar 122026

Watch webinarRead Blog

Feb 122026

Watch webinarRead Blog

Jan 152026

Watch webinarRead Blog

Microsoft Windows Patch Tuesday - Overview

What is Patch Tuesday?

Patch Tuesday or Update Tuesday is the common name for the second Tuesday of every month when Microsoft releases security updates for its operating system and other software. Coinciding with the Patch Tuesday, several other vendors such as Oracle, Mozilla, Adobe, and many others roll out updates for the third-party applications.

When is Patch Tuesday?

Patch Tuesday falls on the second Tuesday of each month. The upcoming Patch Tuesday is on May 12, 2026.

What is patching and why is it important?

Patches are nothing but pieces of software code that are written to fix a bug in a software application, that might lead to a vulnerability. Such vulnerabilities in any application are loop holes for attackers to get their hands on business critical data and information. So it is highly crucial to keep all the applications in a network updated to its latest versions. Updating applications in mobile phones and laptops also work in the same manner by preventing theft of personal data, through security flaws.

What kind of patch updates are released during Patch Tuesday?

Predominantly security patch updates of varying severity like Critical, Important, Moderate & Low are labeled and released. Effective Windows patch management involves prioritizing these based on severity, automating deployment, and ensuring rollback or compatibility testing. It is always a best practice to prioritize your patching based on the severity level mentioned.

What are CVE IDs?

CVE ID - Common Vulnerabilities and Exposure ID is a format in which each vulnerability is disclosed and cataloged in the National Vulnerability Database (NVD). You can look up for a detailed explanation of each vulnerability in the NVD with the help of CVE ID. In Patch Manager Plus you can make use of these CVE IDs to fetch the appropriate patches to deploy. You can find the CVE IDs here.

How to register for ManageEngine's Free Patch Tuesday webinar?

The upcoming Free Patch Tuesday webinar by ManageEngine is scheduled on -. You can make your registrations here.

Where can I find more details about individual bulletins?

Each CVE ID listed in the CVE Index section has been linked to its security advisory.