Microsoft Fixes 79 Vulnerabilities in March Patch Tuesday Update

Microsoft Releases Patches for 79 Vulnerabilities, Including Two Publicly Disclosed Zero-Days

Microsoft’s March 2026 Patch Tuesday security updates have addressed a total of 79 vulnerabilities across various products, including Windows, enterprise platforms, and developer frameworks. The update includes fixes for three critical vulnerabilities and two publicly disclosed zero-day issues.

Vulnerabilities and Patches

The patches resolve a range of security flaws, with the majority rated as “Important” and a smaller number categorized as “Critical.” Many of the vulnerabilities affect widely deployed Microsoft technologies, such as Windows components, SQL Server, .NET, Office, SharePoint, and Azure infrastructure.

Two of the vulnerabilities, CVE-2026-21262 and CVE-2026-26127, were publicly disclosed before patches became available. CVE-2026-21262 is an elevation of privilege vulnerability affecting Microsoft SQL Server, allowing an authenticated attacker to escalate privileges to the SQL Server administrator level. CVE-2026-26127 is a denial-of-service vulnerability in the .NET platform, which could allow a remote attacker to trigger a denial-of-service condition over the network.

Although these vulnerabilities were publicly disclosed, t

About Author

Vaibhav

See author's posts