Piece of news of the day
ADVANCED SECURITY EUROPA
EOODMicrosoft's Patch Tuesday: Urgent Fixes for Two Zero-Days Uncovered
15 April 2026Microsoft released a significant number of fixes for CVEs in its latest Patch Tuesday update, including two zero-day vulnerabilities.
One of them, CVE-2026-32201, is actively being exploited and affects SharePoint, allowing unauthorized attackers to manipulate information presented to users.
The second zero-day, CVE-2026-33825, is an elevation of privilege vulnerability in Microsoft Defender that could lead to system-level access for threat actors.
EoP vulnerabilities dominate this month, with 93 flaws reported.
Sysadmins are urged to also address CVE-2026-33824, a remote code execution flaw in the Windows IKE service, as it poses a serious threat to enterprise environments.
Successful exploitation could result in complete system compromise and data theft.
