ai-security EN

Microsoft Patch Tuesday - February 2026, (Tue, Feb 10th)

Updated Source: isc.sans.edu Feed: isc.sans.edu

Today’s patch Tuesday addresses 59 different vulnerabilities (plus two Chromium vulnerabilities affecting Microsoft Edge). While this is a lower-than-normal number, this includes six vulnerabilities that are already exploited. Three vulnerabilities have already been exploited and made public. In addition, five critical vulnerabilities are included in this patch Tuesday.

Vulnerabilities of Interest:

The three already exploited and public vulnerabilities are very similar, but they affect different Windows components. The issue is that the user is not properly warned when executing code they downloaded. Technologies like SmartScreen are supposed to prevent this from happening. The components affect:

CVE-2026-21510 : Windows Shell.

CVE-2026-21513
This affects the (legacy) Internet Explorer HTML rendering engine. It is still used by some Windows components, but not by the Edge browser.
CVE-2026-21514
Microsoft Word.

In addition, we have three more already exploited vulnerabilities:

CVE-2026-21533
A privilege escalation in Remote Desktop
CVE-2026-21519
A type confusion vulnerability in Windows Manager
CVE-2026-21525
A Windows Remote Access Connection Manager Denial of Service.

Three of the critical vulnerabilities are related to Microsoft Azure and have already been patched by Microsoft.

CVE-2026-23655 This vulnerability only affects Windows Defender on Linux and may lead to remote code execution.

Description
CVEDisclosedExploitedExploitability (old versions)current versionSeverityCVSS Base (AVG)CVSS Temporal (AVG)
.NET Spoofing Vulnerability
CVE-2026-21218NoNo--Important7.56.5
Azure Arc Elevation of Privilege Vulnerability
CVE-2026-24302NoNo--Critical8.67.5
Azure DevOps Server Cross-Site Scripting Vulnerability
CVE-2026-21512NoNo--Important6.55.7
Azure Front Door Elevation of Privilege Vulnerability
CVE-2026-24300NoNo--Critical9.88.5
Azure Function Information Disclosure Vulnerability
CVE-2026-21532NoNo--Critical8.27.1
Azure HDInsight Spoofing Vulnerability
CVE-2026-21529NoNo--Important5.75.0
Azure IoT Explorer Information Disclosure Vulnerability
CVE-2026-21528NoNo--Important6.55.7
Azure Local Remote Code Execution Vulnerability
CVE-2026-21228NoNo--Important8.17.1
Azure SDK for Python Remote Code Execution Vulnerability
CVE-2026-21531NoNo--Important9.88.5
Chromium: CVE-2026-1861 Heap buffer overflow in libvpx
CVE-2026-1861NoNo---
Chromium: CVE-2026-1862 Type Confusion in V8
CVE-2026-1862NoNo---
Cluster Client Failover (CCF) Elevation of Privilege Vulnerability
CVE-2026-21251NoNo--Important7.86.8
Desktop Window Manager Elevation of Privilege Vulnerability
CVE-2026-21519NoYes--Important7.86.8
GDI+ Denial of Service Vulnerability
CVE-2026-20846NoNo--Important7.56.5
GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability
CVE-2026-21523NoNo--Important8.07.0
GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability
CVE-2026-21518NoNo--Important6.55.7
GitHub Copilot and Visual Studio Elevation of Privilege Vulnerability
CVE-2026-21257NoNo--Important8.07.0
GitHub Copilot and Visual Studio Remote Code Execution Vulnerability
CVE-2026-21256NoNo--Important8.87.7
GitHub Copilot for Jetbrains Remote Code Execution Vulnerability
CVE-2026-21516NoNo--Important8.87.7
MSHTML Framework Security Feature Bypass Vulnerability
CVE-2026-21513YesYes--Important8.87.7
Mailslot File System Elevation of Privilege Vulnerability
CVE-2026-21253NoNo--Important7.06.1
Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
CVE-2026-21522NoNo--Critical6.76.0
Microsoft ACI Confidential Containers Information Disclosure Vulnerability
CVE-2026-23655NoNo--Critical6.55.7
Microsoft Defender for Endpoint Linux Extension Remote Code Execution Vulnerability
CVE-2026-21537NoNo--Important8.87.7
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
CVE-2026-0391NoNo--Moderate6.55.7
Microsoft Excel Elevation of Privilege Vulnerability
CVE-2026-21259NoNo--Important7.86.8
Microsoft Excel Information Disclosure Vulnerability
CVE-2026-21258NoNo--Important5.54.8
CVE-2026-21261NoNo--Important5.54.8
Microsoft Exchange Server Spoofing Vulnerability
CVE-2026-21527NoNo--Important6.55.7
Microsoft Outlook Spoofing Vulnerability
CVE-2026-21260NoNo--Important7.56.5
CVE-2026-21511NoNo--Important7.56.5
Microsoft Word Security Feature Bypass Vulnerability
CVE-2026-21514YesYes--Important7.87.2
Power BI Remote Code Execution Vulnerability
CVE-2026-21229NoNo--Important8.07.0
Red Hat, Inc. CVE-2023-2804: Heap Based Overflow libjpeg-turbo
CVE-2023-2804NoNo--Important6.55.7
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2026-21236NoNo--Important7.86.8
CVE-2026-21241NoNo--Important7.06.1
CVE-2026-21238NoNo--Important7.86.8
Windows App for Mac Installer Elevation of Privilege Vulnerability
CVE-2026-21517NoNo--Important7.06.1
Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
CVE-2026-21234NoNo--Important7.06.1
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2026-21246NoNo--Important7.86.8
CVE-2026-21235NoNo--Important7.36.4
Windows HTTP.sys Elevation of Privilege Vulnerability
CVE-2026-21250NoNo--Important7.86.8
CVE-2026-21240NoNo--Important7.86.8
CVE-2026-21232NoNo--Important7.86.8
Windows Hyper-V Remote Code Execution Vulnerability
CVE-2026-21248NoNo--Important7.36.4
CVE-2026-21247NoNo--Important7.36.4
CVE-2026-21244NoNo--Important7.36.4
Windows Hyper-V Security Feature Bypass Vulnerability
CVE-2026-21255NoNo--Important8.87.7
Windows Kernel Elevation of Privilege Vulnerability
CVE-2026-21245NoNo--Important7.86.8
CVE-2026-21239NoNo--Important7.86.8
CVE-2026-21231NoNo--Important7.86.8
Windows Kernel Information Disclosure Vulnerability
CVE-2026-21222NoNo--Important5.54.8
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
CVE-2026-21243NoNo--Important7.56.5
Windows NTLM Spoofing Vulnerability
CVE-2026-21249NoNo--Important3.32.9
Windows Notepad App Remote Code Execution Vulnerability
CVE-2026-20841NoNo--Important8.87.7
Windows Remote Access Connection Manager Denial of Service Vulnerability
CVE-2026-21525NoYes--Moderate6.25.4
Windows Remote Desktop Services Elevation of Privilege Vulnerability
CVE-2026-21533NoYes--Important7.87.2
Windows Shell Security Feature Bypass Vulnerability
CVE-2026-21510YesYes--Important8.88.2
Windows Storage Elevation of Privilege Vulnerability
CVE-2026-21508NoNo--Important7.06.1
Windows Subsystem for Linux Elevation of Privilege Vulnerability
CVE-2026-21242NoNo--Important7.06.1
CVE-2026-21237NoNo--Important7.06.1

Johannes B. Ullrich, Ph.D. , Dean of Research, SANS.edu

Twitter |