June 2026 Patch Tuesday: 0 Patches, 0 Critical, 0 Actively Exploited
By the Numbers
Microsoft's June 2026 Patch Tuesday release contains no security patches. This is an exceptionally rare occurrence; months with zero patches are nearly unheard of in the modern era of monthly security updates. There are no actively exploited vulnerabilities addressed, no additions to the CISA Known Exploited Vulnerabilities catalog, and no critical or important fixes to deploy.
Whether this reflects a quiet month in vulnerability disclosure, a delay in patch readiness, or other factors is unclear. Microsoft has not publicly commented on the empty release at the time of writing.
Patches to Prioritize
There are no actively exploited or CISA KEV vulnerabilities to address this month.
Critical Vulnerability Breakdown
There are no Critical severity CVEs in the June 2026 release.
By Product Family
No product families received security updates this month.
What to Patch First
With no patches released, there is nothing to deploy from this month's Patch Tuesday cycle. However, this is an appropriate time to:
- Verify previous patch deployments: Confirm that May 2026 patches, particularly any actively exploited vulnerabilities from that release, are fully deployed across your environment.
- Review outstanding patches: Audit systems for any missed updates from prior months that may still be pending.
- Monitor for out-of-band releases: An empty Patch Tuesday occasionally precedes an out-of-band security update if Microsoft is actively working on a fix for a newly disclosed or exploited vulnerability.
This is the lightest Patch Tuesday in recent memory, but administrators should remain vigilant for emergency releases and use this window to catch up on any patching backlog.