Microsoft carries two distinct exposure clusters this week: the ClickOnce framework abuse campaign (no CVE, no patch) allows malware delivery, persistence, and silent payload updates on any Windows endpoint without admin rights by exploiting trusted Microsoft binaries, and the AutoJack exploit chain (CVE-2026-26030 and CVE-2026-25592) enables unauthenticated RCE on hosts running AutoGen Studio pre-release builds via an unauthenticated MCP WebSocket endpoint. Neither item has a vendor-issued patch available; both require detection engineering and policy enforcement as the primary response.