Microsoft ICS Security Advisories
47 CISA ICS-CERT advisories published for Microsoft industrial control system products. Data updated every 2 hours.
8
Critical
20
High
9
Medium
1
Low
| Severity | CVSS | Advisory | Products | Published |
|---|---|---|---|---|
| NONE | 0 |
Microsoft GitHub Enterprise: Multiple Vulnerabilities allow Offenlegung from Informationen
wid-sec-w-2026-1682 · 2 CVEs
|
GitHub Enterprise,
GitHub Enterprise,
GitHub Enterprise
+9 more
|
2026-05-26 |
| NONE | 0 |
Microsoft 365 Copilot: Multiple Vulnerabilities
wid-sec-w-2026-1670 · 2 CVEs
|
|
2026-05-25 |
| NONE | 0 |
Microsoft Edge: Multiple Vulnerabilities
wid-sec-w-2026-1556 · 3 CVEs
|
Edge,
Edge
|
2026-05-17 |
| NONE | 0 |
Microsoft GitHub Copilot: Vulnerability allows Code execution
wid-sec-w-2026-1521 · 1 CVE
|
GitHub Copilot,
GitHub Copilot
|
2026-05-14 |
| NONE | 0 |
Microsoft Windows RPC: Vulnerability allows Privilegieneskalation
wid-sec-w-2026-1325
|
Windows
|
2026-04-29 |
| CRITICAL | 10.0 |
Microsoft Entra ID: Vulnerability allows Darstellen falscher Informationen
wid-sec-w-2026-1273 · 1 CVE
|
Entra
|
2026-04-26 |
| HIGH | 8.0 |
Microsoft Cloud-Produkte: Multiple Vulnerabilities
wid-sec-w-2026-1256 · 4 CVEs
|
Azure,
Dynamics 365
|
2026-04-26 |
| NONE | 0 |
Microsoft GitHub Enterprise: Multiple Vulnerabilities
wid-sec-w-2026-1231 · 6 CVEs
|
GitHub Enterprise,
GitHub Enterprise,
GitHub Enterprise
+11 more
|
2026-04-21 |
| NONE | 0 |
Google Chrome and Microsoft Edge: Multiple Vulnerabilities
wid-sec-w-2026-1030 · 60 CVEs
|
|
2026-04-08 |
| NONE | 0 |
Microsoft Windows: Vulnerability allows Privilegieneskalation
wid-sec-w-2026-1008
|
|
2026-04-07 |
| NONE | 0 |
Linux Kernel: Multiple Vulnerabilities
wid-sec-w-2026-0985 · 86 CVEs
|
Azure Linux
|
2026-04-06 |
| HIGH | 7.5 |
OpenSSH: Multiple Vulnerabilities
wid-sec-w-2026-0979 · 5 CVEs
|
Azure Linux
|
2026-04-06 |
| MEDIUM | 6.5 |
MariaDB: Vulnerability allows Denial of Service
wid-sec-w-2026-0972 · 1 CVE
|
Azure Linux
|
2026-04-06 |
| HIGH | 7.4 |
sudo: Vulnerability allows Privilegieneskalation
wid-sec-w-2026-0971 · 1 CVE
|
Azure Linux
|
2026-04-06 |
| CRITICAL | 10.0 |
Microsoft Azure: Multiple Vulnerabilities
wid-sec-w-2026-0963 · 6 CVEs
|
Azure,
Azure,
Azure
+3 more
|
2026-04-06 |
| HIGH | 7.8 |
Linux Kernel: Multiple Vulnerabilities
wid-sec-w-2026-0950 · 11 CVEs
|
Azure Linux
|
2026-03-31 |
| LOW | 1.7 |
xz: Vulnerability allows Code execution
wid-sec-w-2026-0942 · 1 CVE
|
Azure Linux
|
2026-03-31 |
| CRITICAL | 9.6 |
Google Chrome and Microsoft Edge: Multiple Vulnerabilities
wid-sec-w-2026-0937 · 21 CVEs
|
Edge,
Edge
|
2026-03-31 |
| MEDIUM | 4.2 |
Microsoft Edge: Vulnerability allows Manipulation from Dateien and die Offenlegung from Informationen
wid-sec-w-2026-0905 · 1 CVE
|
Edge,
Edge
|
2026-03-29 |
| HIGH | 8.8 |
Google Chrome/Microsoft Edge: Multiple Vulnerabilities
wid-sec-w-2026-0837 · 8 CVEs
|
Edge,
Edge
|
2026-03-23 |
| HIGH | 8.8 |
Google Chrome/Microsoft Edge: Multiple Vulnerabilities
wid-sec-w-2026-0808 · 26 CVEs
|
Edge,
Edge
|
2026-03-19 |
| CRITICAL | 9.9 |
Microsoft 365 Copilot: Multiple Vulnerabilities
wid-sec-w-2026-0795 · 3 CVEs
|
365 Copilot
|
2026-03-19 |
| CRITICAL | 10.0 |
Microsoft Azure DevOps, Data Factory and Cloud Shell: Multiple Vulnerabilities
wid-sec-w-2026-0794 · 3 CVEs
|
Azure,
Azure,
Azure
|
2026-03-19 |
| HIGH | 8.8 |
Microsoft Dynamics 365 Customer Engagement: Vulnerability allows SQL-Injection
wid-sec-w-2026-0788 · 1 CVE
|
Dynamics 365
|
2026-03-18 |
| MEDIUM | 5.0 |
Microsoft Edge (Android): Vulnerability allows Darstellen falscher Informationen
wid-sec-w-2026-0732 · 1 CVE
|
Edge,
Edge
|
2026-03-15 |
| HIGH | 8.8 |
Google Chrome/Microsoft Edge: Multiple Vulnerabilities
wid-sec-w-2026-0723 · 2 CVEs
|
Edge,
Edge,
Edge
+1 more
|
2026-03-12 |
| HIGH | 7.1 |
Microsoft 365 Copilot and Edge: Vulnerability allows Offenlegung from Informationen and Manipulation from Daten
wid-sec-w-2026-0717 · 1 CVE
|
Edge
|
2026-03-12 |
| CRITICAL | 9.6 |
Google Chrome and Microsoft Edge: Multiple Vulnerabilities
wid-sec-w-2026-0702 · 29 CVEs
|
Edge,
Edge
|
2026-03-11 |
| HIGH | 8.7 |
Microsoft GitHub Enterprise Server: Multiple Vulnerabilities
wid-sec-w-2026-0685 · 2 CVEs
|
GitHub Enterprise,
GitHub Enterprise,
GitHub Enterprise
+9 more
|
2026-03-10 |
| HIGH | 7.4 |
Microsoft GitHub Enterprise Server: Multiple Vulnerabilities
wid-sec-w-2026-0682 · 2 CVEs
|
GitHub Enterprise,
GitHub Enterprise,
GitHub Enterprise
+7 more
|
2026-03-10 |
| HIGH | 8.8 |
Microsoft Windows and Windows Server: Multiple Vulnerabilities
wid-sec-w-2026-0661 · 48 CVEs
|
Windows,
Windows 10,
Windows 10
+7 more
|
2026-03-10 |
| HIGH | 8.8 |
Microsoft System Center Operations Manager: Vulnerability allows Erlangen from Administratorrechten
wid-sec-w-2026-0660 · 1 CVE
|
|
2026-03-10 |
| HIGH | 8.8 |
Microsoft Office and SharePoint Produkte: Multiple Vulnerabilities
wid-sec-w-2026-0659 · 13 CVEs
|
Excel,
Office,
Office
+7 more
|
2026-03-10 |
| HIGH | 8.8 |
Microsoft SQL Server: Multiple Vulnerabilities allow Erlangen from Administratorrechten
wid-sec-w-2026-0658 · 3 CVEs
|
SQL Server 2016,
SQL Server 2016,
SQL Server 2017
+5 more
|
2026-03-10 |
| HIGH | 7.8 |
Microsoft ASP.NET and .NET: Multiple Vulnerabilities
wid-sec-w-2026-0657 · 3 CVEs
|
.NET,
.NET,
ASP.NET
+2 more
|
2026-03-10 |
| MEDIUM | 5.5 |
Microsoft Authenticator App: Vulnerability allows Offenlegung from Informationen
wid-sec-w-2026-0656 · 1 CVE
|
Apps
|
2026-03-10 |
| HIGH | 8.8 |
Microsoft Azure Komponenten: Multiple Vulnerabilities
wid-sec-w-2026-0655 · 13 CVEs
|
Azure,
Azure,
Azure
+4 more
|
2026-03-10 |
| MEDIUM | 4.8 |
libpng: Vulnerability allows Code execution
wid-sec-w-2026-0638 · 1 CVE
|
Azure Linux
|
2026-03-08 |
| HIGH | 7.7 |
CoreDNS: Multiple Vulnerabilities
wid-sec-w-2026-0627 · 2 CVEs
|
Azure Linux
|
2026-03-05 |
| MEDIUM | 6.7 |
Microsoft Azure (ACI Confidential Containers): Multiple Vulnerabilities
wid-sec-w-2026-0616 · 3 CVEs
|
Azure
|
2026-03-05 |
| HIGH | 7.8 |
Linux Kernel: Multiple Vulnerabilities
wid-sec-w-2026-0614 · 9 CVEs
|
Azure Linux
|
2026-03-04 |
| MEDIUM | 5.7 |
CPython: Vulnerability allows Umgehen from Sicherheitsvorkehrungen
wid-sec-w-2026-0607 · 1 CVE
|
Azure Linux
|
2026-03-04 |
| MEDIUM | 5.3 |
MariaDB (Server Audit Plugin): Vulnerability allows Umgehen from Sicherheitsvorkehrungen
wid-sec-w-2026-0585 · 1 CVE
|
Azure Linux
|
2026-03-03 |
| MEDIUM | 5.3 |
FreeType: Vulnerability allows nicht spezifizierten Angriff
wid-sec-w-2026-0565 · 1 CVE
|
Azure Linux
|
2026-03-02 |
| CRITICAL | 9.8 |
Schneider Electric EcoStruxure Foxboro DCS Advisor
ICSA-25-352-02 · 1 CVE
|
Windows Server 2016,
Windows Server 2016,
Windows Server 2022
+1 more
|
2025-12-18 |
| HIGH | 7.8 |
Schneider Electric PowerChute Serial Shutdown
ICSA-25-322-04 · 3 CVEs
|
|
2025-11-11 |
| CRITICAL | 9.3 |
Microsoft Remote Desktop Protocol Memory Corruption Vulnerability
ICSA-12-079-01 · 1 CVE
|
Windows XP Service Pack 3 (KB2621440),
Windows XP Professional x64 Edition Service Pack 2 (KB2621440),
Windows Server 2003 Service Pack 2 (KB2621440)
+15 more
|
2025-06-18 |
Get Microsoft Vulnerability Alerts
Don't check manually — OTWarden emails you when CISA publishes new Microsoft ICS advisories, filtered to your specific equipment.
Start 14-Day Free Trial →