Cybersecurity

Latest: Microsoft Fixes 114 Windows Flaws In January 2026 Patch, One...

2026-01-14 0 views admin
Latest: Microsoft Fixes 114 Windows Flaws In January 2026 Patch, One...

Microsoft on Tuesday rolled out its first security update for 2026, addressing 114 security flaws, including one vulnerability that it said has been actively exploited in the wild.

Of the 114 flaws, eight are rated Critical, and 106 are rated Important in severity. As many as 58 vulnerabilities have been classified as privilege escalation, followed by 22 information disclosure, 21 remote code execution, and five spoofing flaws. According to data collected by Fortra, the update marks the third-largest January Patch Tuesday after January 2025 and January 2022.

These patches are in addition to two security flaws that Microsoft has addressed in its Edge browser since the release of the December 2025 Patch Tuesday update, including a spoofing flaw in its Android app (CVE-2025-65046, 3.1) and a case of insufficient policy enforcement in Chromium's WebView tag (CVE-2026-0628, CVSS score: 8.8).

The vulnerability that has come under in-the-wild exploitation is CVE-2026-20805 (CVSS score: 5.5), an information disclosure flaw impacting Desktop Window Manager. The Microsoft Threat Intelligence Center (MTIC) and Microsoft Security Response Center (MSRC) have been credited with identifying and reporting the flaw.

"Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager (DWM) allows an authorized attacker to disclose information locally," Microsoft said in an advisory. "The type of information that could be disclosed if an attacker successfully exploited this vulnerability is a section address from a remote ALPC port, which is user-mode memory."

There are currently no details on how the vulnerability is being exploited, the scale of such efforts, and who may be behind the activity.

"DWM is responsible for drawing everything on the display of a Windows system, which means it offers an enticing combination of privileged access and universal availability, since just about any process might need to display something," Adam Barnett, lead software engineer at Rapid7, said in a statement. "In this case, exploitation leads to improper disclosure of an ALPC port section address, which is a section of user-mode memory where Windows components coordinate various actions between themselves."

Microsoft previously addressed an actively exploited zero-day flaw in DWM in May 2024 (CVE-2024-30051, CVSS score: 7.8), which was described as a privilege escalation flaw that was abused by multiple threat actors, in connection with the distribution of QakBo

Source: The Hacker News

🏷️ Tags

securityvulnerabilitycveattackthreat

More from Cybersecurity

Latest: Microsoft Updates Windows Dll That Triggered Security Alerts

Latest: Microsoft Updates Windows Dll That Triggered Security Alerts

2026-01-14 0
Update: Critical AI Agents Are Becoming Privilege Escalation Paths

Update: Critical AI Agents Are Becoming Privilege Escalation Paths

2026-01-14 0
Complete Guide to Consentfix Debrief: Insights From The New Oauth Phishing Attack

Complete Guide to Consentfix Debrief: Insights From The New Oauth Phishing Attack

2026-01-14 0
Essential Guide: Hackers Exploit C-ares Dll Side-loading To Bypass Security And...

Essential Guide: Hackers Exploit C-ares Dll Side-loading To Bypass Security And...

2026-01-14 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views