Microsoft confirms two major Defender security issues — so update now or face possible attack
Microsoft has confirmed two significant security vulnerabilities in its Defender antivirus tool that are currently being exploited. The vulnerabilities, tracked as CVE-2026-41091 and CVE-2026-45498, have been assigned high severity scores and require immediate attention. Users are advised to verify their software versions and ensure they are updated to avoid potential attacks.
- ▪Microsoft has patched two zero-day vulnerabilities in its Defender antivirus tool.
- ▪CISA has confirmed that these vulnerabilities are being actively exploited in the wild.
- ▪Federal agencies have until June 3 to patch or discontinue the vulnerable software.
Opening excerpt (first ~120 words) tap to expand
Pro Security Microsoft confirms two major Defender security issues — so update now or face possible attack News By Sead Fadilpašić published 22 May 2026 CISA confirms two bugs being actively exploited in the wild When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. (Image credit: Microsoft) Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter Microsoft patches two actively exploited zero‑day flaws in Defender, tracked as CVE‑2026‑41091 (privilege escalation) and CVE‑2026‑45498 (denial of service)Updates were shipped automatically via Malware Protection Engine 1.1.26040.8 and Antimalware…
Excerpt limited to ~120 words for fair-use compliance. The full article is at TechRadar.
Discussion
0 commentsMore from TechRadar
