Microsoft carries the heaviest CVE load this week through nine critical kernel vulnerabilities in Azure Linux 3.0, all patched in the June 2026 Patch Tuesday cycle, spanning network, storage, filesystem, and hardware isolation subsystems. Separately, CrowdStrike researchers have documented active weaponization of Microsoft ClickOnce as a persistence and payload delivery mechanism requiring no elevated privileges, for which no patch exists and detection engineering is the only available defense. The combination of a dense kernel patching obligation and a no-patch evasion technique makes Microsoft the highest-volume vendor event this week.