Microsoft

Microsoft, a major software and cloud services provider, has a high-severity vulnerability (CVSS 7.6) that can be exploited remotely without authentication or special privileges, requiring only user interaction to trigger. The flaw poses significant confidentiality risks with moderate impacts to system integrity and availability. Security teams should monitor for this advisory's public disclosure after the July 1, 2026 deadline and prioritize patching once Microsoft releases fixes.