Patching

• Node.js March 2026 Security Releases: Two High-Severity Issues Across All Active Lines March 24, 2026

  Node.js pushed security releases across all active lines today -- 25.x, 24.x, 22.x, and 20.x. Two high-severity and multiple medium-severity issues are patched. CVE details are pending. If you're running Node in production, you need to update.

• March 2026 Patch Tuesday: 78 Vulnerabilities Including Zero-Day Under Active Exploitation March 23, 2026

  Microsoft's March 2026 Patch Tuesday addressed 78 CVEs including two publicly disclosed zero-days and three Critical-rated flaws. One zero-day in SQL Server has been flagged by multiple sources as actively exploited -- and with patch diffing tools compressing exploitation windows to under 48 hours, the margin for slow patch cycles is gone.

• March 2026 Patch Tuesday: 78 CVEs Including Active Zero-Day March 23, 2026

  March 2026 Patch Tuesday addressed 78 vulnerabilities including at least one zero-day under active exploitation. The gap between patch release and patch applied is where breaches happen.