Microsoft Security Response Center Blog Alerts - Network Services Group

CVE-2026-3784 wrong proxy connection reuse with credentials

Published March 12, 2026

Information published.

CVE-2026-1965 bad reuse of HTTP Negotiate connection

Published March 12, 2026

Information published.

CVE-2026-3783 token leak with redirect and netrc

Published March 12, 2026

Information published.

CVE-2026-23240 tls: Fix race condition in tls_sw_cancel_work_tx()

Published March 12, 2026

Information published.

CVE-2026-23239 espintcp: Fix race condition in espintcp_close()

Published March 12, 2026

Information published.

CVE-2026-23868

Published March 12, 2026

Information published.

CVE-2026-25679 Incorrect parsing of IPv6 host literals in net/url

Published March 12, 2026

Information published.

Chromium: CVE-2026-3537 Object lifecycle issue in PowerVR

Published March 12, 2026

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information.

CVE-2026-26148 Microsoft Azure AD SSH Login extension for Linux Elevation of Privilege Vulnerability

Published March 12, 2026

Acknowledgement Updated

CVE-2026-24293 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Published March 12, 2026

Acknowledgement added. This is an informational change only.

Privacy | General Terms & Conditions | Speed Test | Image Share | ASN

We use cookies to improve your experience. By continuing to use our site, you accept our use of cookies, revised Privacy Policy and Terms of Use.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.