Patch Tuesday, May 2026 Edition

Leading technology companies including Microsoft, Apple, Google, Mozilla, and Oracle have released a significant wave of security patches this month, addressing a near-record number of vulnerabilities in their software. Microsoft’s May Patch Tuesday update fixed 118 security flaws across Windows operating systems and other products, with 16 rated as critical. Notably, this is the first Patch Tuesday in almost two years without emergency zero-day patches or previously disclosed vulnerabilities, marking a relative calm compared to April’s near-record 167 fixes. Among the critical issues patched by Microsoft are several severe vulnerabilities identified with the help of cybersecurity firm Rapid7. These include a stack-based buffer overflow in Windows Netlogon (CVE-2026-41089) that could allow attackers to gain SYSTEM-level privileges on domain controllers without user interaction, and a remote code execution flaw in the Windows DNS client (CVE-2026-41096). Another critical elevation of privilege bug (CVE-2026-41103) enables unauthorized impersonation of existing users, potentially bypassing Microsoft’s Entra ID security. Patches are available for all supported Windows Server versions from 2012 onward. This surge in vulnerability detection and patching is partly attributed to advancements in artificial intelligence, which, despite being vulnerable to social engineering, have proven highly effective at uncovering security weaknesses in human-written code. Microsoft and other tech giants have been participating in “Project Glasswing,” an AI-driven initiative to enhance security testing. Apple’s recent iOS 15 update fixed at least 52 vulnerabilities, extending support back to the iPhone 6s, while Mozilla’s Firefox 150 addressed an unprecedented 271 security issues discovered during the Glasswing evaluation. These developments have accelerated the cadence of security updates, with Mozilla now releasing patches on a weekly basis. The intensified focus on vulnerability identification and rapid patch deployment underscores the growing importance of proactive cybersecurity measures amid an evolving threat landscape. As AI tools become integral to security workflows, their dual nature—as both targets and defenders—highlights the complexity of safeguarding digital infrastructure in an increasingly interconnected world.