Skip to main content
A Singapore Government Agency Website How to identify
Official website links end with .gov.sg
Government agencies communicate via .gov.sg websites (e.g. go.gov.sg/open). Trusted websites
Secure websites use HTTPS
Look for a lock () or https:// as an added precaution. Share sensitive information only on official, secure websites.

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
Monthly Patch

June 2026 Monthly Patch

10 June 2026

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

The vulnerabilities that have been classified as Critical in severity are listed in the table below.

For the full list of security patches released by Microsoft, please refer to https://msrc.microsoft.com/update-guide/en-us/releaseNote/2026-Jun

CRITICAL VULNERABILITIES

Table caption

CVE Number

CVE Name

Base Score

Reference

CVE-2026-48567

Azure HorizonDB Elevation of Privilege Vulnerability

10.0

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-48567

CVE-2026-45657

Windows Kernel Remote Code Execution Vulnerability

9.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45657

CVE-2026-26142

Nuance PowerScribe Remote Code Execution Vulnerability

9.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-26142

CVE-2026-47291

HTTP.sys Remote Code Execution Vulnerability

9.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47291

CVE-2026-44815

DHCP Client Service Remote Code Execution Vulnerability

9.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-44815

CVE-2025-10263

ARM: CVE-2025-10263 Completion of affected memory accesses might not be guaranteed by completion of a TLBI [kernel]

9.3

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-10263

CVE-2026-48579

Microsoft Exchange Online Information Disclosure Vulnerability

9.1

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-48579

CVE-2026-45648

Windows Active Directory Domain Services Remote Code Execution Vulnerability

8.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45648

CVE-2026-47289

Remote Desktop Client Remote Code Execution Vulnerability

8.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47289

CVE-2026-42985

Remote Desktop Client Remote Code Execution Vulnerability

8.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-42985

CVE-2026-32193

Azure Kubernetes Service (AKS) Remote Code Execution Vulnerability

8.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-32193

CVE-2026-45641

Windows Hyper-V Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45641

CVE-2026-45607

Windows Hyper-V Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45607

CVE-2026-47635

Microsoft Outlook and Word Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47635

CVE-2026-45458

Microsoft Outlook and Word Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45458

CVE-2026-45456

Microsoft Outlook and Word Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45456

CVE-2026-45474

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45474

CVE-2026-45472

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45472

CVE-2026-45463

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45463

CVE-2026-45461

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45461

CVE-2026-44810

Microsoft Cryptographic Services Elevation of Privilege Vulnerability

8.4

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-44810

CVE-2026-47652

Windows Hyper-V Remote Code Execution Vulnerability

8.2

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47652

CVE-2026-45476

Microsoft Azure Network Adapter Elevation of Privilege Vulnerability

8.2

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45476

CVE-2026-42987

Windows Deployment Services (WDS) Remote Code Execution

8.1

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-42987

CVE-2026-48574

Windows Media Remote Code Execution Vulnerability

7.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-48574

CVE-2026-44812

Windows Graphics Component Remote Code Execution Vulnerability

7.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-44812

CVE-2026-44803

Windows Graphics Component Remote Code Execution Vulnerability

7.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-44803

CVE-2026-33828

Windows Device Health Attestation (DHA) Elevation of Privilege Vulnerability

7.8

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-33828

CVE-2026-45497

Microsoft M365 Copilot Remote Code Execution Vulnerability

7.7

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45497

CVE-2026-48563

Remote Desktop Client Remote Code Execution Vulnerability

7.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-48563

CVE-2026-47654

Remote Desktop Client Remote Code Execution Vulnerability

7.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47654

CVE-2026-44801

Remote Desktop Client Remote Code Execution Vulnerability

7.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-44801

CVE-2026-44799

Remote Desktop Client Remote Code Execution Vulnerability

7.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-44799

CVE-2026-42992

Remote Desktop Client Remote Code Execution Vulnerability

7.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-42992

CVE-2026-47288

Windows Kerberos Key Distribution Center (KDC) Remote Code Execution

7.1

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47288

CVE-2026-47655

Microsoft Graph Information Disclosure Vulnerability

6.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47655

CVE-2026-42824

M365 Copilot Information Disclosure Vulnerability

6.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-42824

CVE-2026-47644

Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability

6.5

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-47644

CVE-2026-45460

Microsoft Office Information Disclosure Vulnerability

4.7

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45460

Back to top