Microsoft has released a record-breaking Patch Tuesday update fixing 206 security flaws, including 3 zero-days (previously unknown vulnerabilities), significantly expanding on the initial warning about three actively exploited flaws. The update also addresses 6 additional zero-days according to some reports, indicating the scope of security threats has grown substantially since the original article. Even after this massive patch release, security experts warn that zero-day attacks continue, suggesting hackers are still finding and exploiting new vulnerabilities faster than they can be fixed.
Security researchers have identified three serious vulnerabilities that hackers are actively exploiting to gain unauthorized access to computer systems. These flaws represent a growing threat to businesses and individuals who use affected software.
The first vulnerability, called CVE-2026-5027, affects Langflow, a tool used by developers to build artificial intelligence applications. This flaw allows hackers to execute malicious code on computers without needing a password or login credentials. Remote code execution, or RCE, means attackers can take complete control of a system from anywhere on the internet.
The second critical flaw is CVE-2026-11645, a zero-day vulnerability discovered in Chrome's V8 engine, which runs the JavaScript code that powers modern websites. A zero-day means the flaw was unknown to the software maker when attackers started using it in real attacks. Google has released a patch, and security experts strongly recommend users update Chrome immediately to close this dangerous gap.
The third vulnerability, CVE-2026-42271, impacts LiteLLM, another developer tool used to work with artificial intelligence systems. This flaw is particularly dangerous because it can chain together with other weaknesses to allow unauthenticated remote code execution. This means hackers can exploit multiple system components together to gain deeper access than a single vulnerability would permit.
What makes these three flaws especially concerning is that they are not theoretical threats. Cybersecurity experts have confirmed that hackers are actively exploiting all three vulnerabilities in real-world attacks. This means criminals are already targeting systems using Langflow, Chrome browsers, and LiteLLM tools.
Security experts recommend several immediate actions. Users should update Chrome to the latest version right away. Developers and organizations using Langflow or LiteLLM should check for security patches and apply them without delay. Companies should also review their network security to identify if these tools are running on their systems and take steps to protect them.
The discovery of these three actively exploited flaws highlights the ongoing challenge of software security. Even widely-used tools can contain serious vulnerabilities that hackers discover and weaponize before developers have a chance to fix them. Staying informed about cybersecurity threats and applying security updates promptly remains one of the most effective ways to protect computers and data from attack.