HomeMicrosoft Patch Tuesday › April 2026

Please link to this page, it changes often. Thank you! The Senserva Team.

Microsoft Patch Tuesday, April 2026

·

Microsoft's April 2026 security release, published April 14, 2026: 53 updates fixing 153 CVEs, ranked by confirmed exploitation, ransomware use, and severity. Provided by Senserva.

53
Updates (KBs)
153
CVEs fixed
2
Actively exploited
10
Critical updates

Actively exploited CVEs (CISA KEV)

CVE-2026-32201Microsoft SharePoint Server Spoofing VulnerabilityCVSS 6.5Exploited
CVE-2026-32202Windows Shell Spoofing VulnerabilityCVSS 4.3Exploited

Other high-risk CVEs (CVSS 8.8+)

CVE-2026-33824Windows Internet Key Exchange (IKE) Service Extensions Remote Code Execution VulnerabilityCVSS 9.8
CVE-2026-40372ASP.NET Core Elevation of Privilege VulnerabilityCVSS 9.1
CVE-2026-26167Windows Push Notifications Elevation of Privilege VulnerabilityCVSS 8.8
CVE-2026-32157Remote Desktop Client Remote Code Execution VulnerabilityCVSS 8.8
CVE-2026-26178Windows Advanced Rasterization Platform Elevation of Privilege VulnerabilityCVSS 8.8
CVE-2026-32225Windows Shell Security Feature Bypass VulnerabilityCVSS 8.8
CVE-2026-33120Microsoft SQL Server Remote Code Execution VulnerabilityCVSS 8.8

Products fixed this month

.NET 10.0 installed on Mac OS (16).NET 10.0 installed on Linux (16).NET 8.0 (16)Windows 10 Version 1809 for 32-bit Systems (12)Microsoft SQL Server 2025 for x64-based Systems (CU3) (10)Microsoft SQL Server 2022 for x64-based Systems (CU 24) (10)Microsoft SQL Server 2017 for x64-based Systems (GDR) (10)Windows 10 Version 1809 for x64-based Systems (7)Windows Server 2019 (7)Windows 11 Version 26H1 for ARM64-based Systems (5)
Take this release to your AI

Composed from the April 2026 release data above. Copy it into Claude, ChatGPT, or Copilot. Free, no sign-in.

Reference: Microsoft CVE and vulnerability management, ranked by real-world risk, and the Microsoft patching guide.
Data notice: this page is provided as is, for informational purposes only, without warranty of any kind. Senserva, LLC does not guarantee the accuracy, completeness, or timeliness of third-party data (MSRC, NVD, CISA KEV, EPSS) and accepts no liability for actions taken based on it; verify against the authoritative Microsoft advisory before acting. Built daily with Senserva Trustworthy AI. All use of this data is subject to the Senserva EULA.