Microsoft has identified a critical remote code execution vulnerability affecting multiple products that requires immediate patching to prevent potential attacks.
Microsoft has issued security guidance for CVE-2026-35201, a critical vulnerability affecting multiple Microsoft products. The vulnerability allows unauthenticated attackers to execute arbitrary code with system privileges.
The vulnerability has been assigned a CVSS score of 9.8, indicating critical severity. Exploitation does not require user interaction, making it a significant threat to unpatched systems.
Affected Products:
- Microsoft Windows 10 (version 21H2 and later)
- Microsoft Windows 11 (all versions)
- Microsoft Server 2022
- Microsoft Office 2021
- Microsoft 365 Apps for Enterprise
Exploitation of this vulnerability could allow attackers to take complete control of affected systems. Attackers could install programs, view, change, or delete data, and create new accounts with full user rights.
Microsoft has released security updates to address this vulnerability. Organizations should apply these updates immediately.
Mitigation Steps:
- Apply the security updates immediately through Windows Update or Microsoft Update.
- For systems unable to receive automatic updates, download and install the updates manually from the Microsoft Security Response Center website.
- Deploy network segmentation to limit the potential impact of exploitation.
- Monitor for unusual system behavior that might indicate exploitation attempts.
Timeline:
- Vulnerability discovered: October 2026
- Security bulletin released: November 8, 2026
- Updates available: November 8, 2026
- Exploitation observed in the wild: November 15, 2026
For more information about this vulnerability and the available updates, visit the Microsoft Security Response Center and the official security bulletin.
Organizations should prioritize patching systems exposed to the internet, particularly web servers and domain controllers.
Comments
Please log in or register to join the discussion