CP
cyberpings
VulnerabilitiesHIGH

Microsoft Fixes 77 Vulnerabilities in March 2026 Patch Tuesday

R7Rapid7 Blog
CVE-2026-21262SQL ServerCVE-2026-26127CVE-2026-26123Patch Tuesday
🎯

Basically, Microsoft released updates to fix security problems in their software this month.

Quick Summary

Microsoft has released 77 patches this month, addressing critical vulnerabilities in SQL Server and other software. Users of SQL Server and Microsoft Authenticator should update immediately to avoid potential exploitation. Ignoring these updates could lead to serious security risks.

What Happened

This March, Microsoft has rolled out a significant update, addressing 77 vulnerabilities in its software. Among these, two vulnerabilities have been publicly disclosed, but Microsoft has found no evidence of them being exploited in the wild yet. This means that while they are serious, users can breathe a bit easier knowing there are currently no active attacks. Notably, earlier in the month, Microsoft also patched nine browser vulnerabilities, but those are not included in this Patch Tuesday count.

One of the most critical vulnerabilities is a zero-day? remote elevation of privilege (EoP) issue affecting SQL Server?. This vulnerability, identified as CVE-2026-21262, allows an authorized attacker to gain sysadmin privileges over a network. With a CVSS v3? base score of 8.8, it’s just shy of being classified as critical. SQL Server? typically goes months without attention during Patch Tuesday, making this patch particularly noteworthy.

Why Should You Care

If you use SQL Server? in your organization, this vulnerability is a potential gateway for attackers. Imagine someone sneaking into your house and gaining access to all your valuables — that’s what this vulnerability could allow. An attacker with sysadmin privileges could not only access sensitive data but also manipulate the database or even execute commands on the underlying operating system.

Moreover, many SQL Server? instances are still exposed to the internet, despite years of advice against it. Ignoring this patch could leave your organization vulnerable to serious attacks. Even if you think your system is secure, the reality is that many SQL Server?s are still publicly accessible, making them easy targets for attackers.

What's Being Done

Microsoft is actively addressing these vulnerabilities, and they recommend that all users apply the patches immediately. Here are some steps you should take:

  • Update SQL Server? to patch CVE-2026-21262 and other vulnerabilities.
  • Ensure that your SQL Server? instances are not exposed to the internet unless absolutely necessary.
  • Regularly review your security protocols and consider disabling features like xp_cmdshell? unless required.

Experts are closely monitoring the situation to see if any exploitation attempts arise now that these vulnerabilities are public. It’s always better to be safe than sorry, so don’t delay in applying these critical updates.

💡 Tap dotted terms for explanations

🔒 Pro insight: The SQL Server EoP vulnerability highlights the ongoing risk of misconfigured databases, especially those exposed to the internet.

Original article from

Rapid7 Blog · Adam Barnett

Read Full Article

Share

Related Pings

HIGHVulnerabilities

Windows 11 Bug Locks Users Out of System Drive C

A critical bug in Windows 11 is locking users out of their system drives. Affected Samsung devices are unable to access essential applications. Microsoft is investigating the issue and advises users to wait for a patch.

Cyber Security News·
HIGHVulnerabilities

Critical Coruna Flaw Fixed for Older iPhones and iPads

Apple has issued critical updates for older iPhones and iPads to fix the Coruna flaw. This vulnerability could expose sensitive data, making it essential for users to update their devices. Protect yourself by ensuring your device is up to date.

SC Media·
HIGHVulnerabilities

Cisco Catalyst SD-WAN Vulnerability Under Active Exploitation

CISA warns of a critical vulnerability in Cisco Catalyst SD-WAN systems. Federal agencies must act quickly to secure their networks. This flaw poses serious risks to sensitive data and operations.

SC Media·
MEDIUMVulnerabilities

Windows Autopatch to Default to Hotpatch Security Updates

Microsoft will soon enable hotpatch security updates by default for Windows Autopatch users. This change affects devices running Windows 11 version 24H2 or later. It aims to speed up security updates without requiring reboots, enhancing user experience and security.

SC Media·
HIGHVulnerabilities

Google Chrome Flaws Added to CISA's Exploited Vulnerabilities List

CISA has added two high-severity Google Chrome vulnerabilities to its Known Exploited Vulnerabilities catalog. Millions of users are at risk, as these flaws have already been exploited in the wild. Immediate updates and awareness are crucial to protect against potential attacks.

Security Affairs·
HIGHVulnerabilities

Old Industrial Controllers Spark Bidding War on eBay

A bidding war on eBay for 30-year-old industrial controllers raises cybersecurity concerns. These outdated systems pose risks to critical infrastructure. Immediate action is needed to secure them.

Dark Reading·
Microsoft Fixes 77 Vulnerabilities in March 2026 Patch Tuesday | CyberPings Cybersecurity News