March 2026 Patch Tuesday fixes two zero-day vulnerabilities | Malwarebytes

Microsoft’s March 2026 Patch Tuesday addresses 79 CVEs, including two zero-day vulnerabilities: CVE-2026-21262, a privilege escalation flaw in Microsoft SQL Server, and CVE-2026-26127, a denial-of-service bug in the .NET platform. The update also fixes vulnerabilities in Microsoft Office, including remote code execution and information disclosure flaws.