Patch tracker / KB5072936
KB5072936
Microsoft security update released 2026-01-13. Fixes 1 CVE.
High
Download KB5072936
Get the official update for KB5072936. The download and file size for each supported product are on the Microsoft Update Catalog page.
Update summary
Released
2026-01-13
CVEs fixed
1
Max CVSS
7.2
Severity
High
Exploitation and severity
Fixes 1 CVE. Most severe CVSS 7.2 (High). EPSS exploit probability up to 1.2%.
Among the lower half of tracked Microsoft updates by EPSS exploit probability.
What to do
Moderate priority: schedule it in your normal patch cycle. Senserva flags whether KB5072936 is missing on your devices.
CVEs fixed by this update
Affected products
- Microsoft SQL Server 2022 for x64-based Systems (CU 22)
- Microsoft SQL Server 2022 for x64-based Systems (GDR)
- Microsoft SQL Server 2025 for x64-based Systems (GDR)
See this and every Microsoft update ranked by real-world risk on the Microsoft Patch Tracker.