www.rapid7.com 7/15/2026, 12:51:28 AM · external

Patch Tuesday - July 2026

Patch Tuesday - July 2026
Developing story vulnerability 8 articles tracked
Microsoft July 2026 Patch Tuesday addresses 622 vulnerabilities including two exploited zero‑days
CyberSIXT Evidence Panel
Primary Source msrc.microsoft.com
CISA KEV Listed in KEV
Patch Patch Available

IN July 2026, Microsoft published 622 vulnerabilities, a record 416 of which are for Windows. Among the critical vulnerabilities are two exploited in the wild: CVE-2026-55040, an authentication bypass in SharePoint, and CVE-2026-56164, an elevation of privilege issue also in SharePoint. The release sees a trend of increasing vulnerability reports, with Microsoft changing its update documentation approach.

New vulnerabilities include those affecting Active Directory, DHCP, and several applications like Microsoft Exchange and SharePoint, signaling a notable rise in exploitation likelihood.

View Primary Source Via www.rapid7.com

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline