Breaking
Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 Hackers Hide Credit Card Stealer in Pixel-Sized SVG Images Targeting Magento Stores Microsoft Suspends Developer Accounts for High-Profile Open Source Projects European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack Ransomware Attacks Surge in 2026: Healthcare and Finance Most Targeted Google Chrome Zero-Day Vulnerability Actively Exploited – Update Immediately Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 Hackers Hide Credit Card Stealer in Pixel-Sized SVG Images Targeting Magento Stores Microsoft Suspends Developer Accounts for High-Profile Open Source Projects European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack Ransomware Attacks Surge in 2026: Healthcare and Finance Most Targeted Google Chrome Zero-Day Vulnerability Actively Exploited – Update Immediately
Latest Threat Intel Zero-Days Data Breaches Analysis
Live threat feed June 9, 2026 | 19:12 UTC
2032 CVEs This Month
7 Actively Exploited
0 Ransomware Activity
25 Breaches YTD
Threat Investigation Portal
Investigate an IOC in the live graph workspace.
Investigate IOC
Vulnerabilities

Microsoft Releases Patches for SharePoint Zero-Day and 168 Other Vulnerabilities

Thirumala Rao Padilam Thirumala Rao Padilam April 15, 2026
Microsoft Releases Patches for SharePoint Zero-Day and 168 Other Vulnerabilities

Microsoft released security updates addressing 169 vulnerabilities across its product portfolio, including a zero-day flaw in SharePoint that is actively exploited. The fixes cover vulnerabilities varying in severity from Low to Critical, with the majority rated as Important.

What happened

On Tuesday, Microsoft issued patches for 169 security flaws spanning numerous products. Among these vulnerabilities is a SharePoint zero-day that attackers are actively exploiting. The update rollout represents one of the largest in terms of volume of patched vulnerabilities from Microsoft to date.

The patched vulnerabilities include a range of severity scores: eight are Critical, 157 are Important, three are Moderate, and one is Low severity. Ninety-three of the total vulnerabilities are documented further, emphasizing the scope of the update.

Why it matters

This security update is significant because it addresses a zero-day vulnerability currently exploited in SharePoint, a widely used collaboration platform. Exploited zero-days pose immediate risks as attackers can leverage unknown or unpatched weaknesses before defenders can respond.

The volume and diverse severity of flaws patched underscore the ongoing challenges in maintaining security across complex software environments. Organizations relying on Microsoft products should prioritize these patches to reduce attack surface and contain potential breaches.

What security teams should do

Security teams should promptly deploy Microsoft’s latest updates to mitigate risks associated with the SharePoint zero-day and other vulnerabilities. Prioritizing patches for Critical and zero-day flaws is advisable given their exploitability and potential impact.

Monitoring for unusual activity related to SharePoint environments and reviewing exposure to other patched components will help contain ongoing threats. Applying vendor recommendations and maintaining vigilant update practices are key defenses.

Key technical details

Among the 169 addressed vulnerabilities, rankings include eight Critical, 157 Important, three Moderate, and one Low severity issues. The SharePoint zero-day is the only flaw currently known to be exploited in the wild.

While detailed technical descriptions of each vulnerability were not fully disclosed at the time of the update, the breadth of updates highlights attention to a wide array of potential security gaps across Microsoft’s product ecosystem.

Affected organizations/products

The updates apply broadly across Microsoft’s software portfolio, with specific focus on SharePoint due to the zero-day exploitation. Other affected products are not explicitly detailed but are implied given the volume of vulnerabilities addressed.

Source attribution

https://thehackernews.com/2026/04/microsoft-issues-patches-for-sharepoint.html

Thirumala Rao Padilam
Written by
Thirumala Rao Padilam
error: Content is protected !!