Patch tracker / KB5091596
KB5091596
Microsoft security update released 2026-04-14. Fixes 1 CVE.
Critical
Download KB5091596
Get the official update for KB5091596. The download and file size for each supported product are on the Microsoft Update Catalog page.
Update summary
Released
2026-04-14
CVEs fixed
1
Max CVSS
9.1
Severity
Critical
Exploitation and severity
Fixes 1 CVE. Most severe CVSS 9.1 (Critical). EPSS exploit probability up to 11%.
Among the top half of tracked Microsoft updates by EPSS exploit probability.
What to do
Elevated priority: high severity or a meaningful exploitation probability, sooner if an affected product is internet-facing. Senserva flags whether KB5091596 is missing on your devices.
CVEs fixed by this update
Affected products
- ASP.NET Core 10.0
See this and every Microsoft update ranked by real-world risk on the Microsoft Patch Tracker.