CVE-2026-32201

Microsoft’s April 2026 Patch Tuesday includes 165 Microsoft CVEs and one confirmed exploited zero-day, making this a release that deserves fast, risk-based patch prioritization. The most urgent issue is CVE-2026-32201 in Microsoft Office SharePoint, which Microsoft has flagged as exploitation detected.

Alongside that zero-day, this month also includes a sizable group of vulnerabilities marked Exploitation More Likely, signaling increased short-term risk across Windows endpoints, servers, and core enterprise services.

This month’s release also stands out for its broad enterprise exposure. High-priority issues affect SharePoint, Windows IKE Extension, Remote Desktop, Active Directory, SQL Server, Microsoft Power Apps, Office, and Azure-related services. That combination makes April a month when patching teams should focus first on systems with the greatest exposure and business impact, rather than relying solely on CVSS scores.