Back to search

Microsoft

Windows 11

Microsoft desktop operating system for PCs.

26H1 Current train 25H2 Switch to this train 24H2 Switch to this train 23H2 Switch to this train 22H2 EOL Switch to this train 21H2 EOL Switch to this train
Current version
Last checked: 2026-06-03

2026-05 D (28000.2179)

Release date
May 26, 2026
Security status
25 high-severity CVEs tracked in the last 90 days. Current version not affected.

Source

Vendor Release Information

Public release notes are linked for the latest stored release.

View release notes Subscribe to updates

Release history

See the latest published releases stored for this product.

Version Published Notes
2026-05 D (28000.2179) 2026-05-26 Release Notes
2026-05 B (28000.2113) 2026-05-12 Release Notes
2026-04 D (28000.1896) 2026-04-30 Release Notes
2026-04 B (28000.1836) 2026-04-14 Release Notes
2026-03 D (28000.1764) 2026-03-26 Release Notes
2026-03 B (28000.1719) 2026-03-10 Release Notes

Vulnerability tracking

versionPing monitors CVEs for this product. Matching CVEs are listed below. We only display CVEs with a CVSS score of 7.0 or higher that were published within the last 90 days.

Affected status is inferred from published affected version ranges where available. Always verify against the vendor advisory before making production decisions.

CVE Severity Published Status Summary
CVE-2026-42896 HIGH (7.8) 2026-05-12 Current versionnot affected

Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-42825 HIGH (7.0) 2026-05-12 Current versionnot affected

Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-41096 CRITICAL (9.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-41088 HIGH (7.8) 2026-05-12 Current versionnot affected

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40415 HIGH (8.1) 2026-05-12 Current versionnot affected

Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40414 HIGH (7.4) 2026-05-12 Current versionnot affected

Windows TCP/IP Denial of Service Vulnerability

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40413 HIGH (7.4) 2026-05-12 Current versionnot affected

Windows TCP/IP Denial of Service Vulnerability

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40410 HIGH (7.0) 2026-05-12 Current versionnot affected

Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40408 HIGH (7.8) 2026-05-12 Current versionnot affected

Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40407 HIGH (7.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40406 HIGH (7.5) 2026-05-12 Current versionnot affected

Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40405 HIGH (7.5) 2026-05-12 Current versionnot affected

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40403 HIGH (8.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40401 HIGH (7.1) 2026-05-12 Current versionnot affected

Windows TCP/IP Denial of Service Vulnerability

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40399 HIGH (7.8) 2026-05-12 Current versionnot affected

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40398 HIGH (7.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40397 HIGH (7.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40382 HIGH (7.8) 2026-05-12 Current versionnot affected

Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40377 HIGH (7.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-40369 HIGH (7.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-35424 HIGH (7.5) 2026-05-12 Current versionnot affected

Missing release of memory after effective lifetime in Windows Internet Key Exchange (IKE) Protocol allows an unauthorized attacker to deny service over a network.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-35421 HIGH (7.8) 2026-05-12 Current versionnot affected

Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-35418 HIGH (7.8) 2026-05-12 Current versionnot affected

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-35417 HIGH (7.8) 2026-05-12 Current versionnot affected

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
CVE-2026-35416 HIGH (7.0) 2026-05-12 Current versionnot affected

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Affected versions
  • Up to (excluding) 10.0.28000.2113
versionPing is an unofficial free service that tracks software releases and notifies you when CVEs and updates are available. Built by an engineer for engineers.ImprintPrivacy Notice