THE July 2026 Security Update Review discusses significant security patches released by Adobe and Microsoft. Adobe has shifted to a bimonthly release cycle, issuing patches for 12 products, addressing 88 CVEs, with Adobe ColdFusion and Adobe Commerce being prioritized due to their critical CVSS scores. Microsoft, on the other hand, has released an unprecedented 621 CVEs, covering Windows, Office, and several other products.
Highlights include active exploits found in vulnerabilities like CVE-2026-56155 (Active Directory), CVE-2026-56164 (SharePoint), and several critical vulnerabilities in DHCP Server and Remote Desktop. Key takeaways emphasize the importance of patching all vulnerabilities promptly to mitigate risks, particularly for those rated critical or with known exploits.