Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Microsoft Addresses 622 Vulnerabilities, Highlights Two Zero-Days

Microsoft Addresses 622 Vulnerabilities, Highlights Two Zero-Days

Posted on July 14, 2026 By CWS

In a significant move to bolster cybersecurity, Microsoft has rolled out patches for an unprecedented 622 vulnerabilities, including two critical zero-day threats. The security updates, announced on Tuesday, target flaws within Active Directory and SharePoint Server, which have been actively exploited.

Critical Vulnerabilities Addressed

Among the vulnerabilities, a severe issue identified as CVE-2026-56155 affects Active Directory Federation Services (AD FS). This flaw allows attackers to escalate their privileges to an administrative level locally. Similarly, the SharePoint Server vulnerability, tracked as CVE-2026-56164, enables privilege escalation over a network without the necessity for authentication.

An additional security concern, CVE-2026-50661, involves a bypass in BitLocker’s security features. This vulnerability, vulnerable to physical attacks, was publicly known before the July 2026 Patch Tuesday release.

Insights from Security Experts

Security expert Satnam Narang from Tenable speculates that a series of zero-day vulnerabilities may be linked to disclosures by a researcher known as Nightmare-Eclipse or Chaotic-Eclipse. However, official confirmation of this connection is lacking.

Microsoft’s update notes reveal that Windows alone received fixes for 416 vulnerabilities this month, while 164 patches were directed towards the Office suite. Noteworthy among these are critical issues in Windows VMSwitch and SharePoint, with CVSS scores of 9.9 and 9.8 respectively.

Broader Implications and Future Outlook

The comprehensive patching also addresses security issues in other Microsoft products, including Azure, Defender, Developer Tools, Exchange Server, Edge, and SQL Server. This extensive update brings the total count of Common Vulnerabilities and Exposures (CVEs) for the year to a new high.

Pavan Davuluri, Executive VP of Windows, emphasized that AI advancements are accelerating vulnerability detection. Microsoft employs a multi-model agentic scanning harness (MDASH) to efficiently identify bugs in their codebase.

Alongside Microsoft, Adobe has also released updates, fixing 88 vulnerabilities across several products, including ColdFusion and Illustrator. These efforts reflect a broader industry commitment to enhancing cybersecurity in the face of evolving threats.

Security Week News Tags:Active Directory, BitLocker, Cybersecurity, Microsoft, Patch Tuesday, security updates, SharePoint, vulnerability management, Windows, zero-day vulnerabilities

Post navigation

Previous Post: Critical SAP NetWeaver Vulnerability Addressed in July Updates
Next Post: Fortinet Addresses Vulnerabilities in Key Security Software

Related Posts

China’s Cyber Silence is More Worrying Than Russia’s Noise, Chief Cybersecurity Strategist Says China’s Cyber Silence is More Worrying Than Russia’s Noise, Chief Cybersecurity Strategist Says Security Week News
Critical Triofox Vulnerability Exploited in the Wild Critical Triofox Vulnerability Exploited in the Wild Security Week News
Critical Vulnerability Exposes n8n Instances to Takeover Attacks Critical Vulnerability Exposes n8n Instances to Takeover Attacks Security Week News
European Space Agency Confirms Breach After Hacker Offers to Sell Data European Space Agency Confirms Breach After Hacker Offers to Sell Data Security Week News
HeroDevs Raises 5 Million to Secure Deprecated OSS HeroDevs Raises $125 Million to Secure Deprecated OSS Security Week News
Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware Chinese APT ‘Phantom Taurus’ Targeting Organizations With Net-Star Malware Security Week News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • Tego AI Exposes Potential Risks in Claude Tag Integration
  • Security Flaw in Claude for Chrome Allows Unauthorized Access
  • Fortinet Addresses Vulnerabilities in Key Security Software
  • Microsoft Addresses 622 Vulnerabilities, Highlights Two Zero-Days
  • Critical SAP NetWeaver Vulnerability Addressed in July Updates

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • Tego AI Exposes Potential Risks in Claude Tag Integration
  • Security Flaw in Claude for Chrome Allows Unauthorized Access
  • Fortinet Addresses Vulnerabilities in Key Security Software
  • Microsoft Addresses 622 Vulnerabilities, Highlights Two Zero-Days
  • Critical SAP NetWeaver Vulnerability Addressed in July Updates

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark