Microsoft Patch Tuesday for March 2026 — Snort rules and prominent vulnerabilities

Key Findings

Microsoft released its monthly security update for March 2026, addressing 79 vulnerabilities
3 vulnerabilities were marked as "critical" by Microsoft
Remaining vulnerabilities were classified as "important"
Microsoft assessed that exploitation of the "critical" vulnerabilities is "less likely"

CVE-2026-26110 and CVE-2026-26113 are "critical" Microsoft Office Remote Code Execution Vulnerabilities
CVE-2026-26144 is a "critical" information disclosure vulnerability affecting Microsoft Excel
CVE-2026-26109 is an "important" vulnerability in Microsoft Office Excel allowing local code execution
CVE-2026-26106 and CVE-2026-26114 are "important" remote code execution vulnerabilities affecting Microsoft SharePoint Server
CVE-2026-26115, CVE-2026-26116, and CVE-2026-21262 are "important" elevation of privilege vulnerabilities in SQL Server
CVE-2026-26118 is an elevation of privilege vulnerability in Azure MCP Server Tools
CVE-2026-26128 is an elevation of privilege vulnerability in Windows SMB Server

CVE-2026-26110 and CVE-2026-26113 are "critical" Microsoft Office Remote Code Execution Vulnerabilities
CVE-2026-26144 is a "critical" information disclosure vulnerability affecting Microsoft Excel
CVE-2026-21262 is an elevation of privilege vulnerability in SQL Server that has been publicly disclosed

Cisco Talos is releasing a new Snort rule set that detects attempts to exploit some of the disclosed vulnerabilities
Additional rules may be released at a future date
The current Snort rule set is available for download

https://blog.talosintelligence.com/microsoft-patch-tuesday-march-2026/
https://securityaffairs.com/189266/security/microsoft-patch-tuesday-security-updates-for-march-2026-fixed-84-bugs.html
https://krebsonsecurity.com/2026/03/microsoft-patch-tuesday-march-2026-edition/
https://news.backbox.org/2026/03/10/microsoft-patch-tuesday-for-march-2026-snort-rules-and-prominent-vulnerabilities/