Patch tracker / KB5082404

KB5082404

Microsoft security update released 2026-04-14. Fixes 2 CVEs.

High

Download KB5082404

Get the official update for KB5082404. The download and file size for each supported product are on the Microsoft Update Catalog page.

Update summary

Released
2026-04-14
CVEs fixed
2
Max CVSS
7.5
Severity
High

Exploitation and severity

Fixes 2 CVEs. Most severe CVSS 7.5 (High). EPSS exploit probability up to 1.3%.

Among the lower half of tracked Microsoft updates by EPSS exploit probability.

What to do

Moderate priority: schedule it in your normal patch cycle. Senserva flags whether KB5082404 is missing on your devices.

CVEs fixed by this update

Affected products

  • Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems
  • Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems
  • Microsoft .NET Framework 4.8 on Windows Server 2012

See this and every Microsoft update ranked by real-world risk on the Microsoft Patch Tracker.

Sponsored by SenservaMicrosoft 365, Intune, Defender, and Entra ID security and compliance, with automated remediation and Trustworthy AI.Scan free
Lexicon: the terms on this page
CVE
Common Vulnerabilities and Exposures. A unique ID for one publicly known vulnerability, such as CVE-2025-1234.
KB
Microsoft Knowledge Base article. The identifier for a specific Microsoft update.
KEV
CISA Known Exploited Vulnerabilities. CVEs confirmed exploited in the wild. Fix these first.
CVSS
Common Vulnerability Scoring System. A standardized Severity score from 0 to 10.
EPSS
Exploit Prediction Scoring System. The probability a CVE will be exploited in the next 30 days.
MSRC
Microsoft Security Response Center. Microsoft's Patch Tuesday advisories and KB-to-CVE mapping.
NVD
National Vulnerability Database (NIST). Authoritative CVE metadata and CVSS scores.
Ransomware
The vulnerability is linked to known ransomware activity.