EarlyNarratives
Pricing
Start free trialSign in
Start free trialSign in
Signal

Microsoft issues second-largest Patch Tuesday with 167 vulnerabilities including exploited SharePoint zero-day

Evidence first: scan the strongest sources, then decide whether to go deeper.

rss
cvepatchmicrosoftadobesecurity_advisoryvulnerability
Trend in the last 24h
Current brief openSource links open
This current signal is open on the public brief with summary, metadata, source links, and full evidence. Pro adds compare-over-time, alerts, exports, and workflow.
BackEvidence (25)Get the free brief by emailStart free trial
No card needed for the free brief.
Evidence trail (top sources)
top sources (1 domains)domains are deduped. counts indicate coverage, not truth.
1 top source shown
Adobe InCopy: CVSS (Max): 7.8*
AusCERT - Bulletins · portal.auscert.org.au · 2026-04-15 04:39 UTC
limited source diversity in top sources
View all evidence
Overview

On April 14, 2026, Microsoft released its second-largest Patch Tuesday ever, addressing 167 security vulnerabilities across multiple products.

Entities
MicrosoftAdobeTenableMicrosoft Defender Antimalware PlatformMicrosoft SharePoint ServerMicrosoft SQL ServerMicrosoft AzureMicrosoft Office
Score total
2.35
Momentum 24h
25
Posts
25
Origins
12
Source types
1
Duplicate ratio
0%
Why now
  • April 2026 Patch Tuesday is the second-largest ever, demanding urgent attention.
  • Active exploitation of SharePoint zero-day increases urgency for patch deployment.
  • Adobe and Tenable also released critical updates simultaneously, broadening the security landscape.
Why it matters
  • The SharePoint zero-day is actively exploited, posing immediate risk to organizations.
  • The volume of vulnerabilities reflects growing complexity and AI-driven discovery in software security.
  • Timely patching is critical to prevent exploitation of critical and zero-day vulnerabilities.
LLM analysis
Topic mix: lowPromo risk: lowSource quality: high
Recurring claims
  • Microsoft April 2026 Patch Tuesday fixes 167 vulnerabilities including two zero-days
  • An actively exploited zero-day vulnerability in Microsoft SharePoint Server allows attackers to spoof trusted content and access sensitive information
  • Adobe released security updates for InCopy, InDesign, and Acrobat Reader addressing critical vulnerabilities
All evidence
All evidence
Adobe InCopy: CVSS (Max): 7.8*
AusCERT - Bulletins · portal.auscert.org.au · 2026-04-15 04:39 UTC
Adobe InDesign: CVSS (Max): 7.8
AusCERT - Bulletins · portal.auscert.org.au · 2026-04-15 04:38 UTC
Microsoft SQL Server: CVSS (Max): 8.8
AusCERT - Bulletins · portal.auscert.org.au · 2026-04-15 04:31 UTC
ALERT Microsoft Office, Microsoft Office Services and Web Apps: CVSS (Max): 8.4
AusCERT - Bulletins · portal.auscert.org.au · 2026-04-15 04:26 UTC
ALERT Microsoft ESU: CVSS (Max): 9.8
AusCERT - Bulletins · portal.auscert.org.au · 2026-04-15 04:02 UTC
Show filters & breakdown
Posts loaded: 0Publishers: 1Origin domains: 1Duplicates: -
Showing 5 / 0
Top publishers (this list)
  • AusCERT - Bulletins (5)
Top origin domains (this list)
  • portal.auscert.org.au (5)