| ■ 通告编号 | NS-2026–0017 | ■ 发布日期 | 2026–07-15 |
| ■ 漏洞危害 | 攻击者利用本次安全更新中的漏洞,可造成权限提升、远程代码执行、信息泄露等 | ||
| ■ TAG | 安全更新、Office、Windows、SQL Server、Visual Studio Code、Azure | ||
一. 漏洞概述
7月15日,绿盟科技CERT监测到微软发布7月安全更新补丁,修复了622个安全问题,涉及Windows、Microsoft Office、Microsoft SQL Server、Visual Studio Code、Microsoft Edge、Azure等广泛使用的产品,其中包括远程代码执行漏洞、信息泄露漏洞、权限提升漏洞等高危漏洞类型。
本月微软月度更新修复的漏洞中,严重程度为关键(Critical)的漏洞有62个,重要(Important)漏洞有553个,中危(Moderate)漏洞有6个,低危(Low)漏洞有1个。其中包括2个已检测到在野利用的漏洞:
Active Directory联合身份验证服务权限提升漏洞(CVE-2026-56155)
Microsoft SharePoint Server权限提升漏洞(CVE-2026-56164)
请相关用户尽快更新补丁进行防护,完整漏洞列表请参考附录。
参考链接:
https://msrc.microsoft.com/update-guide/releaseNote/2026-Jul
二、重点漏洞简述
根据产品流行度和漏洞重要性筛选出此次更新中包含影响较大的漏洞,请相关用户重点进行关注:
Active Directory联合身份验证服务权限提升漏洞(CVE-2026-56155):
Active Directory联合身份验证服务中存在权限提升漏洞,由于Active Directory联邦服务的访问控制粒度不足,经过身份验证的攻击者可通过构造特制联邦认证请求触发漏洞,从而在目标服务器上提升至管理员权限并伪造域内可信身份。该漏洞存在在野利用,CVSS评分7.8。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-56155
Microsoft SharePoint Server权限提升漏洞(CVE-2026-56164):
Microsoft SharePoint Server中存在权限提升漏洞,由于SharePoint Server的关键功能缺乏身份验证机制,未经身份验证的攻击者可以通过网络利用此漏洞,从而在目标服务器上提升权限。该漏洞存在在野利用,CVSS评分5.3。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-56164
Microsoft SharePoint远程代码执行漏洞(CVE-2026-50522):
SharePoint中存在远程代码执行漏洞,由于平台对XML外部数据输入处理不当,未经身份验证的攻击者可通过发送特制XML请求反序列化不可信数据,从而在目标服务器上执行任意代码。CVSS 评分 9.8。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-50522
Windows DHCP Server远程代码执行漏洞(CVE-2026-50518):
Windows DHCP Server中存在远程代码执行漏洞,由于DHCP服务对客户端网络请求输入处理不当,未经身份验证的攻击者可通过发送特制的DHCP数据包触发缓冲区溢出,从而在目标服务器上执行任意代码。CVSS 评分 9.8。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-50518
Windows Server Network driver远程代码执行漏洞(CVE-2026-56188):
Windows Server Network driver中存在远程代码执行漏洞,由于系统网络驱动对共享资源的并发使用及不当的同步机制,未经身份验证的攻击者可通过发送特制网络数据包引发条件竞争,从而在目标服务器执行任意代码。CVSS 评分 9.8。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-56188
Remote Desktop Protocol远程代码执行漏洞(CVE-2026-56190):
Remote Desktop Protocol 中存在远程代码执行漏洞,由于系统 RDP 服务对远程连接数据包处理不当,未经身份验证的攻击者可通过向已禁用网络级身份验证 (NLA) 的系统发送特制的远程桌面协议 (RDP) 流量,从而在目标主机上执行任意代码。CVSS 评分 9.8。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-56190
Windows VMSwitch 权限提升漏洞(CVE-2026-57092):
Windows VMSwitch中存在权限提升漏洞,由于Windows VMSwitch 中释放后重用问题,攻击者可在来宾虚拟机 (Guest VM) 中运行代码并向Hyper-V虚拟交换机发送特制网络请求,导致主机访问已失效的内存,从而造成拒绝服务或在宿主机系统上实现权限提升。CVSS 评分 9.9。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-57092
Microsoft Exchange Server欺骗漏洞(CVE-2026-55008):
Exchange Server 中存在欺骗漏洞,由于在网页生成过程中存在跨站脚本攻击(XSS),未经身份验证的攻击者可通过向用户发送特制的邮件,如果用户在 OWA (Outlook Web Access) 中打开此邮件并满足特定条件,则可在浏览器上下文中执行任意JavaScript代码。CVSS 评分9.6。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-55008
Microsoft Copilot远程代码执行漏洞(CVE-2026-48561):
Copilot中存在远程代码执行漏洞,由于Copilot程序对输入请求未进行确认或来源检查,未经身份验证的攻击者可通过诱导用户访问恶意网站发送特制注入指令,从而在目标设备上执行任意代码。CVSS 评分9.6。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-48561
Windows BitLocker安全功能绕过漏洞(CVE-2026-50661):
Windows BitLocker中存在安全功能绕过漏洞,由于BitLocker对预启动恢复环境校验流程处理不当,拥有设备物理访问权限的攻击者可通过加载特制引导介质触发漏洞,从而绕过磁盘加密验证机制直接读取加密磁盘内全部数据。目前漏洞已公开披露,CVSS评分6.1。
官方通告链接:
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2026-50661
三、影响范围
以下为部分重点关注漏洞的受影响产品版本,其他漏洞影响产品范围请参阅官方通告链接。
| 漏洞编号 | 受影响产品版本 |
| CVE-2026-56155 | Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 R2 Windows Server 2012 (Server Core installation) Windows Server 2012 Windows Server 2016 (Server Core installation) Windows Server 2016 Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows Server 2025 Windows Server 2025 (Server Core installation) Windows Server 2022 Windows Server 2019 (Server Core installation) Windows Server 2019 Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems |
| CVE-2026-56164
CVE-2026-50522 |
Microsoft SharePoint Server Subscription Edition
Microsoft SharePoint Server 2019 Microsoft SharePoint Enterprise Server 2016 |
| CVE-2026-50518 | Windows Server 2012 R2
Windows Server 2019 Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows Server 2012 (Server Core installation) Windows Server 2012 Windows Server 2016 (Server Core installation) Windows Server 2016 Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows Server 2019 (Server Core installation) Windows Server 2012 R2 (Server Core installation) Windows Server 2025 Windows Server 2025 (Server Core installation) Windows Server 2022 |
| CVE-2026-56188
CVE-2026-56190 CVE-2026-57092 |
Windows Server 2016 (Server Core installation)
Windows Server 2016 Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 11 Version 26H1 for ARM64-based Systems Windows 11 version 26H1 for x64-based Systems Windows Server 2025 Windows 11 Version 24H2 for x64-based Systems Windows 11 Version 24H2 for ARM64-based Systems Windows 11 Version 25H2 for x64-based Systems Windows 11 Version 25H2 for ARM64-based Systems Windows Server 2025 (Server Core installation) Windows 10 Version 21H2 for 32-bit Systems Windows Server 2022 Windows Server 2019 (Server Core installation) Windows Server 2019 Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 22H2 for 32-bit Systems Windows 10 Version 22H2 for ARM64-based Systems Windows 10 Version 22H2 for x64-based Systems Windows 10 Version 21H2 for x64-based Systems Windows 10 Version 21H2 for ARM64-based Systems Windows Server 2012 R2 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 (Server Core installation) Windows Server 2012 |
| CVE-2026-55008 | Microsoft Exchange Server Subscription Edition RTM
Microsoft Exchange Server 2019 Cumulative Update 15 Microsoft Exchange Server 2019 Cumulative Update 14 Microsoft Exchange Server 2016 Cumulative Update 23 |
| CVE-2026-48561 | Microsoft 365 Copilot for iOS Microsoft 365 Copilot for Android |
| CVE-2026-50661 | Windows 10 Version 21H2 for ARM64-based Systems
Windows 10 Version 21H2 for 32-bit Systems Windows Server 2022 Windows Server 2019 (Server Core installation) Windows Server 2019 Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 22H2 for x64-based Systems Windows 10 Version 21H2 for x64-based Systems Windows Server 2016 (Server Core installation) Windows Server 2016 Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 11 Version 26H1 for ARM64-based Systems Windows 11 version 26H1 for x64-based Systems Windows Server 2025 Windows 11 Version 24H2 for x64-based Systems Windows 11 Version 24H2 for ARM64-based Systems Windows 11 Version 25H2 for x64-based Systems Windows 11 Version 25H2 for ARM64-based Systems Windows Server 2025 (Server Core installation) Windows 10 Version 22H2 for 32-bit Systems Windows 10 Version 22H2 for ARM64-based Systems |
四、漏洞防护
4.1补丁更新
目前微软官方已针对受支持的产品版本发布了修复以上漏洞的安全补丁,强烈建议受影响用户尽快安装补丁进行防护,官方下载链接:
https://msrc.microsoft.com/update-guide/releaseNote/2026-Jul
注:由于网络问题、计算机环境问题等原因,Windows Update的补丁更新可能出现失败。用户在安装补丁后,应及时检查补丁是否成功更新。
右键点击Windows图标,选择“设置(N)”,选择“更新和安全”-“Windows更新”,查看该页面上的提示信息,也可点击“查看更新历史记录”查看历史更新情况。
针对未成功安装的更新,可点击更新名称跳转到微软官方下载页面,建议用户点击该页面上的链接,转到“Microsoft更新目录”网站下载独立程序包并安装。
附录:漏洞列表
| 影响产品 | CVE 编号 | 漏洞标题 | 严重程度 |
| Azure | CVE-2026-26145 | Microsoft Azure Synapse权限提升漏洞 | Critical |
| Apps | CVE-2026-41106 | Microsoft 365 Copilot权限提升漏洞 | Critical |
| Windows | CVE-2026-42982 | Windows Secure Kernel Mode权限提升漏洞 | Critical |
| Azure | CVE-2026-45499 | Azure OpenAI权限提升漏洞 | Critical |
| Apps | CVE-2026-48561 | Microsoft Copilot远程代码执行漏洞 | Critical |
| Windows | CVE-2026-48564 | DHCP Server Service远程代码执行漏洞 | Critical |
| Windows | CVE-2026-49164 | Windows Active Directory Domain Services远程代码执行漏洞 | Critical |
| Windows | CVE-2026-49796 | Windows GDI+远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-50314 | Microsoft Office远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50327 | Windows Media远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50370 | DHCP Server Service远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50380 | Windows GDI+远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50382 | DirectX Graphics Kernel远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50392 | Windows Secure Kernel Mode权限提升漏洞 | Critical |
| Windows | CVE-2026-50444 | Windows Server Update Service (WSUS)权限提升漏洞 | Critical |
| Microsoft Office | CVE-2026-50467 | Microsoft Office远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50474 | Remote Desktop Client远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50518 | Windows DHCP Server远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-50522 | Microsoft SharePoint远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50655 | Microsoft Windows Media Foundation远程代码执行漏洞 | Critical |
| Windows | CVE-2026-50680 | Windows Hyper-V权限提升漏洞 | Critical |
| Windows | CVE-2026-50694 | Windows Secure Socket Tunneling Protocol (SSTP)远程代码执行漏洞 | Critical |
| Microsoft SQL Server | CVE-2026-54117 | Microsoft SQL Server远程代码执行漏洞 | Critical |
| Microsoft SQL Server | CVE-2026-54118 | Microsoft SQL Server远程代码执行漏洞 | Critical |
| Windows | CVE-2026-54121 | Active Directory Certificate Services权限提升漏洞 | Critical |
| Windows | CVE-2026-54127 | Windows Hyper-V权限提升漏洞 | Critical |
| Windows | CVE-2026-54128 | Windows DHCP Client远程代码执行漏洞 | Critical |
| Windows | CVE-2026-54982 | Windows Reliable Multicast Transport Driver (RMCAST)远程代码执行漏洞 | Critical |
| Windows | CVE-2026-54992 | Microsoft Message Queuing Queue Manager远程代码执行漏洞 | Critical |
| Windows | CVE-2026-54995 | Windows Reliable Multicast Transport Driver (RMCAST)远程代码执行漏洞 | Critical |
| Microsoft Exchange Online | CVE-2026-54998 | Microsoft Exchange Online权限提升漏洞 | Critical |
| Windows | CVE-2026-54999 | Windows TCP/IP远程代码执行漏洞 | Critical |
| Microsoft Exchange Server Subscription Edition RTM,Microsoft Exchange Server | CVE-2026-55008 | Microsoft Exchange Server欺骗漏洞 | Critical |
| Other | CVE-2026-55010 | Minecraft Bedrock Dedicated Server远程代码执行漏洞 | Critical |
| System Center | CVE-2026-55011 | Microsoft Defender远程代码执行漏洞 | Critical |
| System Center | CVE-2026-55012 | Microsoft Defender远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55018 | Microsoft Office远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55022 | Microsoft Office远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55033 | Microsoft Word远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55040 | Microsoft SharePoint Server安全功能绕过漏洞 | Critical |
| Microsoft Office | CVE-2026-55043 | Microsoft PowerPoint远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55045 | Microsoft Office远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55049 | Microsoft Office远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55056 | Microsoft Office远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55120 | Microsoft PowerPoint远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55123 | Microsoft PowerPoint远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55127 | Microsoft Word远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55129 | Microsoft Office远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55132 | Microsoft Word远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-55140 | Microsoft Office远程代码执行漏洞 | Critical |
| Microsoft Dynamics | CVE-2026-55944 | Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises)远程代码执行漏洞 | Critical |
| Windows | CVE-2026-56159 | DHCP Server Service远程代码执行漏洞 | Critical |
| Windows | CVE-2026-56188 | Windows Server Network driver远程代码执行漏洞 | Critical |
| Windows | CVE-2026-56189 | Microsoft Windows Media Foundation远程代码执行漏洞 | Critical |
| Windows | CVE-2026-57087 | Microsoft Windows Media Foundation远程代码执行漏洞 | Critical |
| Windows | CVE-2026-57090 | Microsoft Windows Media Foundation远程代码执行漏洞 | Critical |
| Windows | CVE-2026-57092 | Microsoft Windows VMSwitch权限提升漏洞 | Critical |
| Windows | CVE-2026-57094 | Microsoft Windows Media Foundation远程代码执行漏洞 | Critical |
| Azure | CVE-2026-57100 | Microsoft Entra Provisioning Service权限提升漏洞 | Critical |
| Windows | CVE-2026-58542 | Windows Media远程代码执行漏洞 | Critical |
| Windows | CVE-2026-58608 | Windows Print Spooler远程代码执行漏洞 | Critical |
| Microsoft Office | CVE-2026-58644 | Microsoft SharePoint远程代码执行漏洞 | Critical |
| Windows | CVE-2026-33842 | Windows File Explorer信息泄露漏洞 | Important |
| Windows | CVE-2026-34328 | Windows Audio Service信息泄露漏洞 | Important |
| Windows | CVE-2026-34346 | Windows Ancillary Function Driver for WinSock信息泄露漏洞 | Important |
| Windows | CVE-2026-34348 | Windows Event Logging Service信息泄露漏洞 | Important |
| Windows | CVE-2026-34349 | Windows Media信息泄露漏洞 | Important |
| Windows | CVE-2026-40378 | Windows Local Security Authority Subsystem Service (LSASS)拒绝服务漏洞 | Important |
| Windows | CVE-2026-40400 | Windows PowerShell远程代码执行漏洞 | Important |
| Windows | CVE-2026-40422 | Windows File Explorer信息泄露漏洞 | Important |
| Windows | CVE-2026-41087 | Windows File Explorer信息泄露漏洞 | Important |
| Visual Studio Code | CVE-2026-41109 | GitHub Copilot and Visual Studio Code安全功能绕过漏洞 | Important |
| Windows | CVE-2026-42900 | Microsoft Windows App Store权限提升漏洞 | Important |
| Windows | CVE-2026-42975 | Windows Bluetooth Port Driver Remote Code Execution | Important |
| Windows | CVE-2026-42990 | SQL Server ODBC driver权限提升漏洞 | Important |
| Windows | CVE-2026-44800 | Windows Push Notifications权限提升漏洞 | Important |
| Windows | CVE-2026-44806 | Windows Secure Channel拒绝服务漏洞 | Important |
| Visual Studio Code | CVE-2026-45496 | Visual Studio Code安全功能绕过漏洞 | Important |
| Microsoft.AspNet.OData,Microsoft.AspNetCore.OData | CVE-2026-45646 | OData for ASP.NET and ASP.NET Core拒绝服务漏洞 | Important |
| Visual Studio Code | CVE-2026-47282 | GitHub Copilot and Visual Studio Code信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-47290 | Microsoft Office远程代码执行漏洞 | Important |
| Microsoft SQL Server | CVE-2026-47295 | Microsoft SQL Server权限提升漏洞 | Important |
| Microsoft SQL Server | CVE-2026-47296 | Microsoft SQL Server权限提升漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 8.0 installed on Linux,.NET 9.0 installed on Linux,Microsoft Visual Studio,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-47300 | ASP.NET Core权限提升漏洞 | Important |
| Windows,System Center | CVE-2026-47301 | Configuration Manager权限提升漏洞 | Important |
| Microsoft .NET Framework,.NET 8.0 installed on Windows,.NET 10.0 installed on Windows,Microsoft Visual Studio,.NET 8.0 installed on Linux,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-47302 | .NET拒绝服务漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 9.0 installed on Linux,.NET 8.0 installed on Linux,Microsoft Visual Studio,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-47303 | ASP.NET Core权限提升漏洞 | Important |
| Microsoft Visual Studio | CVE-2026-47304 | .NET安全功能绕过漏洞 | Important |
| Microsoft Visual Studio | CVE-2026-47305 | Visual Studio远程代码执行漏洞 | Important |
| Azure | CVE-2026-47632 | Azure Monitor Agent Metrics Extension权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-47642 | Microsoft Excel远程代码执行漏洞 | Important |
| Windows | CVE-2026-48571 | Windows App Package Installer权限提升漏洞 | Important |
| Windows | CVE-2026-48572 | Windows App Package Installer权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-48580 | Microsoft Excel信息泄露漏洞 | Important |
| Device | CVE-2026-48581 | Surface Broker SDMA权限提升漏洞 | Important |
| Windows | CVE-2026-49162 | Microsoft Brokering File System权限提升漏洞 | Important |
| Windows | CVE-2026-49165 | Microsoft Windows App Store信息泄露漏洞 | Important |
| Windows | CVE-2026-49166 | Windows Print Configuration权限提升漏洞 | Important |
| Windows | CVE-2026-49167 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-49168 | Storage Spaces Direct权限提升漏洞 | Important |
| Windows | CVE-2026-49169 | Windows DNS Server远程代码执行漏洞 | Important |
| Windows | CVE-2026-49170 | Windows StateRepository API Server file权限提升漏洞 | Important |
| Windows | CVE-2026-49171 | Windows Speech Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-49172 | Windows FTP Service远程代码执行漏洞 | Important |
| Windows | CVE-2026-49173 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-49174 | DNS Client篡改漏洞 | Important |
| Windows | CVE-2026-49175 | Windows DNS Client权限提升漏洞 | Important |
| Windows | CVE-2026-49176 | Windows WalletService权限提升漏洞 | Important |
| Windows | CVE-2026-49177 | Windows TCP/IP信息泄露漏洞 | Important |
| Windows | CVE-2026-49178 | Windows Active Directory Domain Services远程代码执行漏洞 | Important |
| Windows | CVE-2026-49180 | Universal Plug and Play (upnp.dll)信息泄露漏洞 | Important |
| Windows | CVE-2026-49181 | Windows DHCP Client权限提升漏洞 | Important |
| Windows | CVE-2026-49183 | Windows Clipboard Server权限提升漏洞 | Important |
| Windows | CVE-2026-49184 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-49783 | Secure Boot安全功能绕过漏洞 | Important |
| Windows | CVE-2026-49784 | Microsoft Windows App Store权限提升漏洞 | Important |
| Windows | CVE-2026-49787 | HTTP.sys拒绝服务漏洞 | Important |
| Windows | CVE-2026-49788 | HTTP/2拒绝服务漏洞 | Important |
| Windows | CVE-2026-49789 | Windows NTFS权限提升漏洞 | Important |
| Windows | CVE-2026-49790 | Windows Universal Disk Format File System Driver (UDFS)权限提升漏洞 | Important |
| Windows | CVE-2026-49791 | Windows Routing and Remote Access Service (RRAS)权限提升漏洞 | Important |
| Windows | CVE-2026-49792 | Windows Resilient File System (ReFS)远程代码执行漏洞 | Important |
| Windows | CVE-2026-49793 | Windows Resilient File System (ReFS)远程代码执行漏洞 | Important |
| Windows | CVE-2026-49794 | Windows USB Audio Class Driver信息泄露漏洞 | Important |
| Windows | CVE-2026-49795 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-49797 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-49798 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-49799 | Windows Local Security Authority Subsystem Service (LSASS)拒绝服务漏洞 | Important |
| Windows | CVE-2026-49800 | Windows Web Proxy Auto-Discovery Protocol (WPAD)权限提升漏洞 | Important |
| Windows | CVE-2026-49801 | Windows SMB信息泄露漏洞 | Important |
| Windows | CVE-2026-49802 | Windows USB Print Driver权限提升漏洞 | Important |
| Windows | CVE-2026-49803 | Windows AppX Deployment Extensions权限提升漏洞 | Important |
| Windows | CVE-2026-49804 | Windows USB Video Driver权限提升漏洞 | Important |
| Windows | CVE-2026-49805 | Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-49806 | Windows USB Print Driver权限提升漏洞 | Important |
| Windows | CVE-2026-49807 | Windows DirectX信息泄露漏洞 | Important |
| Windows | CVE-2026-49808 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50293 | Windows Internal Task Bar权限提升漏洞 | Important |
| Windows | CVE-2026-50294 | Windows Kernel信息泄露漏洞 | Important |
| Windows | CVE-2026-50295 | Windows Zero Trust DNS安全功能绕过漏洞 | Important |
| Windows | CVE-2026-50296 | DirectX Graphics Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50297 | Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-50298 | Windows Spaceport.sys权限提升漏洞 | Important |
| Windows | CVE-2026-50299 | Windows Storage Spaces Direct远程代码执行漏洞 | Important |
| Windows | CVE-2026-50300 | Windows DWM Core Library Information Disclosure Vulnerability | Important |
| Microsoft Office | CVE-2026-50301 | Microsoft Office远程代码执行漏洞 | Important |
| Windows | CVE-2026-50302 | Windows Cryptographic Services安全功能绕过漏洞 | Important |
| Windows | CVE-2026-50303 | Windows Key Guard安全功能绕过漏洞 | Important |
| Windows | CVE-2026-50304 | Windows Active Directory Federation Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-50305 | Microsoft Brokering File System权限提升漏洞 | Important |
| Windows | CVE-2026-50306 | Windows TCP/IP权限提升漏洞 | Important |
| Windows | CVE-2026-50307 | Windows TCP/IP权限提升漏洞 | Important |
| Windows | CVE-2026-50308 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50309 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50310 | Windows Human Interface Device信息泄露漏洞 | Important |
| Windows | CVE-2026-50311 | Windows Server权限提升漏洞 | Important |
| Windows | CVE-2026-50312 | Windows Ancillary Function Driver for WinSock权限提升漏洞 | Important |
| Windows | CVE-2026-50313 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50315 | Windows Image Acquisition权限提升漏洞 | Important |
| Windows | CVE-2026-50316 | Windows Kernel信息泄露漏洞 | Important |
| Windows | CVE-2026-50317 | Windows Operating Systems权限提升漏洞 | Important |
| Windows | CVE-2026-50318 | Windows Resilient File System (ReFS)权限提升漏洞 | Important |
| Windows | CVE-2026-50321 | Windows USB Driver权限提升漏洞 | Important |
| Windows | CVE-2026-50322 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50323 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50324 | Windows Active Directory Federation Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-50325 | Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-50326 | Windows Unified Consent System权限提升漏洞 | Important |
| Windows | CVE-2026-50328 | Windows Server Update Service (WSUS)篡改漏洞 | Important |
| Windows | CVE-2026-50329 | Microsoft DWM Core Library权限提升漏洞 | Important |
| Windows | CVE-2026-50330 | Windows Remote Desktop Client权限提升漏洞 | Important |
| Windows | CVE-2026-50331 | Windows Application Model Core API权限提升漏洞 | Important |
| Windows | CVE-2026-50332 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50333 | Windows Spaceport.sys权限提升漏洞 | Important |
| Windows | CVE-2026-50334 | Windows Push Notification信息泄露漏洞 | Important |
| Windows | CVE-2026-50335 | Windows Operating Systems权限提升漏洞 | Important |
| Windows | CVE-2026-50336 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50337 | Windows Notification权限提升漏洞 | Important |
| Azure | CVE-2026-50338 | Azure Spring Apps权限提升漏洞 | Important |
| Windows | CVE-2026-50339 | Windows Push Notification信息泄露漏洞 | Important |
| Windows | CVE-2026-50340 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50341 | Windows NTFS信息泄露漏洞 | Important |
| Windows | CVE-2026-50342 | Windows MIDI Service Module Elevation of Privileges Vulnerability | Important |
| Windows | CVE-2026-50343 | Microsoft Install Service权限提升漏洞 | Important |
| Windows | CVE-2026-50344 | Windows OLE权限提升漏洞 | Important |
| Windows | CVE-2026-50345 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50346 | Netlogon RPC权限提升漏洞 | Important |
| Windows | CVE-2026-50347 | Windows Data.dll远程代码执行漏洞 | Important |
| Windows | CVE-2026-50348 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50350 | Windows Trusted Runtime Interface Driver信息泄露漏洞 | Important |
| Windows | CVE-2026-50351 | Windows Audio Compression Manager (ACM)权限提升漏洞 | Important |
| Windows | CVE-2026-50352 | Windows Cryptographic Services信息泄露漏洞 | Important |
| Windows | CVE-2026-50353 | DirectX Graphics Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50354 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50355 | Windows Active Directory Federation Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-50356 | Microsoft Windows App Store权限提升漏洞 | Important |
| Windows | CVE-2026-50357 | Windows Resilient File System (ReFS)权限提升漏洞 | Important |
| Windows | CVE-2026-50358 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50359 | Microsoft XML Core Services权限提升漏洞 | Important |
| Windows | CVE-2026-50360 | Windows SMB Server权限提升漏洞 | Important |
| Windows | CVE-2026-50361 | Microsoft Brokering File System权限提升漏洞 | Important |
| Windows | CVE-2026-50362 | Windows Resilient File System (ReFS)远程代码执行漏洞 | Important |
| Windows | CVE-2026-50363 | Windows Push Notifications权限提升漏洞 | Important |
| Windows | CVE-2026-50364 | Windows Backup Service权限提升漏洞 | Important |
| Windows | CVE-2026-50365 | Remote Access Management service/API (RPC server)权限提升漏洞 | Important |
| Windows | CVE-2026-50366 | Windows Active Directory Domain Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-50367 | Windows Sensor Data Service权限提升漏洞 | Important |
| Windows | CVE-2026-50368 | Windows Active Directory Federation Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-50369 | Windows Remote Desktop Services权限提升漏洞 | Important |
| Windows | CVE-2026-50371 | Windows LUA File Virtualization Filter Driver权限提升漏洞 | Important |
| Windows | CVE-2026-50372 | Windows Redirected Drive Buffering System权限提升漏洞 | Important |
| Windows | CVE-2026-50373 | Windows Search Service权限提升漏洞 | Important |
| Windows | CVE-2026-50374 | Windows Cloud Files Mini Filter Driver权限提升漏洞 | Important |
| Windows | CVE-2026-50375 | DirectX Graphics Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50376 | Windows Remote Desktop Client信息泄露漏洞 | Important |
| Windows | CVE-2026-50377 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50378 | Windows Key Guard权限提升漏洞 | Important |
| Windows | CVE-2026-50379 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50381 | Composite Image File System driver (cimfs.sys)信息泄露漏洞 | Important |
| Windows | CVE-2026-50383 | Windows Print Spooler信息泄露漏洞 | Important |
| Windows | CVE-2026-50384 | Windows Clip Service权限提升漏洞 | Important |
| Windows | CVE-2026-50385 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50386 | Windows NTFS远程代码执行漏洞 | Important |
| Windows,Microsoft Office | CVE-2026-50387 | Windows GDI权限提升漏洞 | Important |
| Windows | CVE-2026-50388 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50389 | Windows File Explorer信息泄露漏洞 | Important |
| Windows | CVE-2026-50390 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50391 | Windows Group Policy权限提升漏洞 | Important |
| Windows | CVE-2026-50393 | Windows Kernel-Mode Driver权限提升漏洞 | Important |
| Windows | CVE-2026-50394 | Windows Media信息泄露漏洞 | Important |
| Windows | CVE-2026-50396 | Windows Kernel-Mode Driver权限提升漏洞 | Important |
| Windows | CVE-2026-50397 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50398 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50399 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50400 | Windows App Package Installer权限提升漏洞 | Important |
| Windows | CVE-2026-50401 | Windows Cloud Files Mini Filter Driver信息泄露漏洞 | Important |
| Windows | CVE-2026-50402 | NTFS权限提升漏洞 | Important |
| Windows | CVE-2026-50403 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50404 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50405 | Windows Filtering Platform权限提升漏洞 | Important |
| Windows | CVE-2026-50406 | Windows Backup Engine权限提升漏洞 | Important |
| Windows | CVE-2026-50407 | Windows Resilient File System (ReFS)权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-50408 | Microsoft Excel信息泄露漏洞 | Important |
| Windows | CVE-2026-50409 | Windows Overlay Filter信息泄露漏洞 | Important |
| Windows | CVE-2026-50410 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50411 | Windows Active Directory Federation Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-50412 | Windows NTFS权限提升漏洞 | Important |
| Windows | CVE-2026-50413 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50414 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50415 | Windows Media信息泄露漏洞 | Important |
| Windows | CVE-2026-50416 | Win32k信息泄露漏洞 | Important |
| Windows | CVE-2026-50417 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50418 | Windows System Secure功能绕过漏洞 | Important |
| Windows | CVE-2026-50419 | Windows Kernel信息泄露漏洞 | Important |
| Windows | CVE-2026-50420 | HTTP.sys信息泄露漏洞 | Important |
| Windows | CVE-2026-50421 | Windows Connected User Experiences and Telemetry权限提升漏洞 | Important |
| Windows | CVE-2026-50422 | Windows NTFS权限提升漏洞 | Important |
| Windows | CVE-2026-50423 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50424 | Windows Domain Controller拒绝服务漏洞 | Important |
| Windows | CVE-2026-50425 | Windows Internal System User Profile权限提升漏洞 | Important |
| Windows | CVE-2026-50426 | Windows DNS Server远程代码执行漏洞 | Important |
| Windows | CVE-2026-50427 | Content Delivery Manager权限提升漏洞 | Important |
| Windows | CVE-2026-50428 | Windows Container Isolation FS Filter Driver (unionfs.sys)信息泄露漏洞 | Important |
| Windows | CVE-2026-50429 | Windows Kernel信息泄露漏洞 | Important |
| Windows | CVE-2026-50430 | Windows Push Notification信息泄露漏洞 | Important |
| Windows | CVE-2026-50431 | Windows Quality of Service (QoS) Packet Scheduler信息泄露漏洞 | Important |
| Windows | CVE-2026-50432 | Window Virtual Filtering Platform (VFP)拒绝服务漏洞 | Important |
| Windows | CVE-2026-50433 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50434 | Windows Push Notification信息泄露漏洞 | Important |
| Windows | CVE-2026-50435 | Windows Overlay Filter权限提升漏洞 | Important |
| Windows | CVE-2026-50436 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50437 | Windows DWM Core Library Information Disclosure Vulnerability | Important |
| Apps | CVE-2026-50438 | Microsoft PC Manager权限提升漏洞 | Important |
| Windows | CVE-2026-50439 | Microsoft Message Queuing Queue Manager远程代码执行漏洞 | Important |
| Windows | CVE-2026-50440 | Windows Audio Service权限提升漏洞 | Important |
| Windows | CVE-2026-50441 | Windows Resilient File System (ReFS)权限提升漏洞 | Important |
| Windows | CVE-2026-50442 | Windows File Explorer信息泄露漏洞 | Important |
| Windows | CVE-2026-50445 | Windows Remote Desktop Protocol (RDP)信息泄露漏洞 | Important |
| Windows | CVE-2026-50447 | Windows Message Queuing Service (MSMQ)远程代码执行漏洞 | Important |
| Windows | CVE-2026-50448 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50449 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50450 | Windows Network Connections Service权限提升漏洞 | Important |
| Windows | CVE-2026-50451 | Windows Routing and Remote Access Service (RRAS)权限提升漏洞 | Important |
| Windows | CVE-2026-50452 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50453 | Windows USB Audio Class Driver信息泄露漏洞 | Important |
| Windows | CVE-2026-50454 | Windows User Interface Core权限提升漏洞 | Important |
| Windows | CVE-2026-50455 | Universal Plug and Play (upnp.dll)信息泄露漏洞 | Important |
| Windows | CVE-2026-50456 | Windows File Explorer信息泄露漏洞 | Important |
| Windows | CVE-2026-50457 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50458 | Microsoft Brokering File System权限提升漏洞 | Important |
| Windows | CVE-2026-50459 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50460 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50461 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50462 | Windows Ancillary Function Driver for WinSock权限提升漏洞 | Important |
| Windows | CVE-2026-50463 | Windows Kernel信息泄露漏洞 | Important |
| Windows | CVE-2026-50465 | Windows DNS Client篡改漏洞 | Important |
| Windows | CVE-2026-50466 | Microsoft Brokering File System权限提升漏洞 | Important |
| Microsoft SQL Server | CVE-2026-50468 | Microsoft SQL Server信息泄露漏洞 | Important |
| Windows | CVE-2026-50469 | Windows Projected File System权限提升漏洞 | Important |
| Windows | CVE-2026-50470 | Windows Network Policy Server SNMP信息泄露漏洞 | Important |
| Windows | CVE-2026-50471 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50473 | Windows File Explorer信息泄露漏洞 | Important |
| Windows | CVE-2026-50475 | Windows Kernel信息泄露漏洞 | Important |
| Windows | CVE-2026-50476 | Windows Network Connections Service权限提升漏洞 | Important |
| Windows | CVE-2026-50477 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50478 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50479 | Windows USB Hub Driver权限提升漏洞 | Important |
| Windows | CVE-2026-50480 | Windows Web Proxy Auto-Discovery Protocol (WPAD)权限提升漏洞 | Important |
| Windows | CVE-2026-50482 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50483 | Windows Graphics Component信息泄露漏洞 | Important |
| Windows | CVE-2026-50484 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50485 | Windows Hyper-V拒绝服务漏洞 | Important |
| Windows | CVE-2026-50486 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50487 | Windows DNS Client权限提升漏洞 | Important |
| Windows | CVE-2026-50488 | Clipboard User Service权限提升漏洞 | Important |
| Windows | CVE-2026-50489 | Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-50490 | Windows Installer权限提升漏洞 | Important |
| Windows | CVE-2026-50491 | Code Integrity DLL (ci.dll)权限提升漏洞 | Important |
| Windows | CVE-2026-50492 | Windows Resilient File System (ReFS)远程代码执行漏洞 | Important |
| Windows | CVE-2026-50493 | DirectX Graphics Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50494 | Windows NTFS远程代码执行漏洞 | Important |
| Windows | CVE-2026-50495 | DNS Client篡改漏洞 | Important |
| Windows | CVE-2026-50496 | Windows Network Policy Server SNMP信息泄露漏洞 | Important |
| Windows | CVE-2026-50497 | Windows Remote Desktop Protocol (RDP)信息泄露漏洞 | Important |
| Windows | CVE-2026-50498 | Windows Universal Disk Format File System Driver (UDFS)权限提升漏洞 | Important |
| Windows | CVE-2026-50499 | Windows Print Spooler权限提升漏洞 | Important |
| Windows | CVE-2026-50500 | Windows Netlogon权限提升漏洞 | Important |
| Windows | CVE-2026-50501 | Windows Resilient File System (ReFS)远程代码执行漏洞 | Important |
| Windows | CVE-2026-50502 | Windows Event Logging Service远程代码执行漏洞 | Important |
| Windows | CVE-2026-50503 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-50504 | Windows Remote Desktop Client信息泄露漏洞 | Important |
| Windows | CVE-2026-50505 | Windows Message Queuing Service (MSMQ)远程代码执行漏洞 | Important |
| Microsoft.AspNet.OData,Microsoft.AspNetCore.OData | CVE-2026-50506 | OData for ASP.NET and ASP.NET Core拒绝服务漏洞 | Important |
| Windows | CVE-2026-50509 | Wireless Wide Area Network Service (WwanSvc)权限提升漏洞 | Important |
| Other | CVE-2026-50510 | GitHub Copilot远程代码执行漏洞 | Important |
| Visual Studio Code | CVE-2026-50520 | Visual Studio Code远程代码执行漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 8.0 installed on Linux,Microsoft Visual Studio,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50524 | .NET Framework拒绝服务漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 8.0 installed on Linux,Microsoft Visual Studio,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50525 | .NET拒绝服务漏洞 | Important |
| .NET 8.0 installed on Linux,.NET 9.0 installed on Linux,Microsoft Visual Studio,.NET 8.0 installed on Windows,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50526 | .NET篡改漏洞 | Important |
| Microsoft .NET Framework,.NET 8.0 installed on Linux,.NET 8.0 installed on Windows,.NET 9.0 installed on Linux,Microsoft Visual Studio,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50527 | .NET Framework拒绝服务漏洞 | Important |
| .NET 8.0 installed on Linux,.NET 8.0 installed on Windows,Microsoft Visual Studio,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50528 | .NET安全功能绕过漏洞 | Important |
| .NET 9.0 installed on Windows,Microsoft .NET Framework,.NET 8.0 installed on Windows,Microsoft Visual Studio | CVE-2026-50646 | .NET Framework远程代码执行漏洞 | Important |
| Windows | CVE-2026-50647 | Active Directory Federation Server拒绝服务漏洞 | Important |
| Microsoft .NET Framework,.NET 8.0 installed on Windows,.NET 8.0 installed on Linux,.NET 9.0 installed on Linux,Microsoft Visual Studio,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50648 | .NET Framework拒绝服务漏洞 | Important |
| .NET 9.0 installed on Windows,.NET 8.0 installed on Windows,Microsoft Visual Studio | CVE-2026-50649 | .NET远程代码执行漏洞 | Important |
| .NET 9.0 installed on Windows,Microsoft .NET Framework,.NET 8.0 installed on Windows,Microsoft Visual Studio | CVE-2026-50650 | .NET Framework权限提升漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 8.0 installed on Linux,Microsoft Visual Studio,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50651 | .NET拒绝服务漏洞 | Important |
| Azure | CVE-2026-50652 | Azure Active Directory拒绝服务漏洞 | Important |
| Azure | CVE-2026-50653 | Azure Active Directory拒绝服务漏洞 | Important |
| System Center | CVE-2026-50657 | Microsoft Defender for Endpoint for Mac信息泄露漏洞 | Important |
| System Center | CVE-2026-50658 | Microsoft Defender for Endpoint for Mac权限提升漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 8.0 installed on Linux,Microsoft Visual Studio,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-50659 | .NET欺骗漏洞 | Important |
| Windows | CVE-2026-50661 | Windows BitLocker安全功能绕过漏洞 | Important |
| Other | CVE-2026-50663 | Game: Age of Empires II: Definitive Edition远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-50665 | Microsoft Office信息泄露漏洞 | Important |
| Windows | CVE-2026-50666 | Windows Remote Access权限提升漏洞 | Important |
| Windows | CVE-2026-50667 | Windows Common Log File System Driver权限提升漏洞 | Important |
| Windows | CVE-2026-50668 | Windows Resilient File System (ReFS)权限提升漏洞 | Important |
| Windows | CVE-2026-50669 | Windows Telephony Server权限提升漏洞 | Important |
| Windows | CVE-2026-50670 | Windows Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-50672 | Windows NTFS权限提升漏洞 | Important |
| Windows | CVE-2026-50673 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-50674 | Windows USB Print Driver权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-50675 | Microsoft Excel远程代码执行漏洞 | Important |
| Windows | CVE-2026-50676 | Windows Media权限提升漏洞 | Important |
| Windows | CVE-2026-50677 | Windows Media权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-50678 | Microsoft Excel信息泄露漏洞 | Important |
| Windows | CVE-2026-50679 | Windows Search Service权限提升漏洞 | Important |
| Windows | CVE-2026-50681 | Windows Secure Channel信息泄露漏洞 | Important |
| Windows | CVE-2026-50682 | Active Directory拒绝服务漏洞 | Important |
| Windows | CVE-2026-50683 | Windows DHCP Client权限提升漏洞 | Important |
| Windows | CVE-2026-50684 | Active Directory Federation Server欺骗漏洞 | Important |
| Windows | CVE-2026-50685 | Windows DHCP Server远程代码执行漏洞 | Important |
| Windows | CVE-2026-50686 | Windows OLE远程代码执行漏洞 | Important |
| Windows | CVE-2026-50687 | Windows Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-50688 | Windows Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-50689 | Windows Clipboard Server权限提升漏洞 | Important |
| Windows | CVE-2026-50690 | Windows SMB信息泄露漏洞 | Important |
| Windows | CVE-2026-50692 | Desktop Window Manager权限提升漏洞 | Important |
| Windows | CVE-2026-50695 | Windows Active Directory Federation Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-50696 | Internet Key Exchange (IKE) Protocol拒绝服务漏洞 | Important |
| Windows | CVE-2026-50697 | Windows Common Log File System Driver权限提升漏洞 | Important |
| Windows | CVE-2026-54107 | Windows Win32k权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-54108 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Windows | CVE-2026-54109 | Windows Resilient File System (ReFS)远程代码执行漏洞 | Important |
| Windows | CVE-2026-54111 | Universal Print Management Service权限提升漏洞 | Important |
| Windows | CVE-2026-54112 | Windows Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-54114 | Windows Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-54115 | Windows Message Queuing (MSMQ)权限提升漏洞 | Important |
| Microsoft SQL Server | CVE-2026-54116 | Microsoft SQL Server信息泄露漏洞 | Important |
| Windows | CVE-2026-54119 | Windows Active Directory拒绝服务漏洞 | Important |
| Windows | CVE-2026-54122 | Windows GDI+远程代码执行漏洞 | Important |
| Windows,Apps | CVE-2026-54124 | Windows Terminal远程代码执行漏洞 | Important |
| Windows | CVE-2026-54125 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-54126 | Windows Remote Desktop Protocol (RDP)信息泄露漏洞 | Important |
| Windows | CVE-2026-54129 | Windows Hyper-V权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-54131 | Microsoft Excel远程代码执行漏洞 | Important |
| Windows | CVE-2026-54132 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-54983 | Windows Active Directory Federation Services拒绝服务漏洞 | Important |
| Windows | CVE-2026-54986 | Windows Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-54987 | Windows Overlay Filter权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-54988 | Microsoft Excel信息泄露漏洞 | Important |
| Windows | CVE-2026-54989 | Quality Windows Audio/Video Experience (QWAVE)权限提升漏洞 | Important |
| Windows | CVE-2026-54990 | Remote Desktop Client远程代码执行漏洞 | Important |
| Windows | CVE-2026-54991 | Windows USB Print Driver权限提升漏洞 | Important |
| Windows | CVE-2026-54993 | Microsoft Windows Media Foundation远程代码执行漏洞 | Important |
| Windows | CVE-2026-54996 | Windows USB Print Driver权限提升漏洞 | Important |
| Windows | CVE-2026-54997 | Windows SMB信息泄露漏洞 | Important |
| Windows | CVE-2026-55000 | Windows USB Print Driver权限提升漏洞 | Important |
| Windows | CVE-2026-55001 | Active Directory Domain Services权限提升漏洞 | Important |
| Microsoft SQL Server | CVE-2026-55002 | Microsoft SQL Server权限提升漏洞 | Important |
| Windows | CVE-2026-55003 | Windows Remote Desktop Protocol (RDP)信息泄露漏洞 | Important |
| Windows | CVE-2026-55004 | Windows Print Configuration权限提升漏洞 | Important |
| Microsoft Exchange Server Subscription Edition RTM,Microsoft Exchange Server | CVE-2026-55005 | Microsoft Exchange Server远程代码执行漏洞 | Important |
| Microsoft Exchange Server Subscription Edition RTM,Microsoft Exchange Server | CVE-2026-55006 | Microsoft Exchange Server权限提升漏洞 | Important |
| Microsoft Exchange Server Subscription Edition RTM,Microsoft Exchange Server | CVE-2026-55009 | Microsoft Exchange Server权限提升漏洞 | Important |
| Windows | CVE-2026-55014 | Windows Remote Help Defense权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-55016 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55017 | Microsoft Office远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55019 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55020 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55021 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55023 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55024 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55025 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55026 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55027 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55028 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55029 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55030 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55031 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55032 | Microsoft Word远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55034 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55035 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55036 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55037 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55038 | Microsoft Word远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55039 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55041 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55042 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55044 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55046 | Microsoft Excel信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55047 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55048 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55050 | Microsoft Word信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55051 | Microsoft SharePoint Server信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55052 | Microsoft SharePoint权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-55053 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55054 | Microsoft Excel信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55055 | Microsoft Word远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55057 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55058 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55121 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55122 | Microsoft Excel信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55124 | Microsoft Word信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55125 | Microsoft Office远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55126 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55128 | Microsoft Word远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55130 | Microsoft Word远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55131 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55133 | Microsoft OneNote远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55134 | Microsoft Word远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55135 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Microsoft Office | CVE-2026-55136 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55137 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55138 | Microsoft Excel信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55139 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55141 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55142 | Microsoft Word信息泄露漏洞 | Important |
| Windows | CVE-2026-55144 | Windows Cryptography API: Next Generation (CNG)篡改漏洞 | Important |
| Microsoft Office | CVE-2026-55898 | Microsoft Excel信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-55899 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55947 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55948 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-55949 | Microsoft Excel远程代码执行漏洞 | Important |
| Windows | CVE-2026-56155 | Active Directory Federation Services权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-56156 | Microsoft Excel远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-56157 | Microsoft SharePoint Server欺骗漏洞 | Important |
| Windows | CVE-2026-56168 | Windows SMB Server拒绝服务漏洞 | Important |
| Windows | CVE-2026-56169 | Windows Admin Center权限提升漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 8.0 installed on Linux,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-56170 | ASP.NET Core拒绝服务漏洞 | Important |
| Windows | CVE-2026-56173 | Windows WebView权限提升漏洞 | Important |
| Windows | CVE-2026-56175 | Windows NTFS权限提升漏洞 | Important |
| Windows | CVE-2026-56176 | Windows Win32k权限提升漏洞 | Important |
| System Center | CVE-2026-56178 | Microsoft Defender for Endpoint for Mac权限提升漏洞 | Important |
| Windows | CVE-2026-56182 | Windows NTFS权限提升漏洞 | Important |
| Windows | CVE-2026-56183 | Windows MIDI Service Module Elevation of Privileges Vulnerability | Important |
| Windows | CVE-2026-56184 | Win32k信息泄露漏洞 | Important |
| Windows | CVE-2026-56185 | Windows Admin Center信息泄露漏洞 | Important |
| Windows | CVE-2026-56186 | Windows Secure Channel信息泄露漏洞 | Important |
| Windows | CVE-2026-56187 | Windows MIDI Service Module Elevation of Privileges Vulnerability | Important |
| Windows | CVE-2026-56190 | Remote Desktop Protocol远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-56192 | Microsoft Office信息泄露漏洞 | Important |
| Microsoft Office | CVE-2026-56193 | Microsoft Office信息泄露漏洞 | Important |
| Windows | CVE-2026-56194 | Windows NFS Server权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-56195 | Microsoft Office信息泄露漏洞 | Important |
| Windows | CVE-2026-56196 | Windows Admin Center (WAC)远程代码执行漏洞 | Important |
| Windows | CVE-2026-56197 | Windows Admin Center (WAC)远程代码执行漏洞 | Important |
| Fabric Data Warehouse | CVE-2026-56642 | Microsoft Fabric Data Warehouse远程代码执行漏洞 | Important |
| Windows | CVE-2026-56643 | DirectX Graphics Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-56644 | DirectX Graphics Kernel权限提升漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-56645 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-56646 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Windows | CVE-2026-56647 | Windows Remote Access Service Infrastructure权限提升漏洞 | Important |
| Windows | CVE-2026-56648 | Windows NFS Server权限提升漏洞 | Important |
| Windows | CVE-2026-56649 | Windows Network File System远程代码执行漏洞 | Important |
| Windows | CVE-2026-56650 | Windows Network File System权限提升漏洞 | Important |
| Windows | CVE-2026-57083 | Windows Media Photo Codec信息泄露漏洞 | Important |
| Windows | CVE-2026-57084 | Windows File Explorer信息泄露漏洞 | Important |
| Windows | CVE-2026-57085 | Windows Print Spooler信息泄露漏洞 | Important |
| Windows | CVE-2026-57088 | Extensible Storage Engine (ESENT)权限提升漏洞 | Important |
| Windows | CVE-2026-57089 | Windows SMB Server Network Transport Driver (srvnet.sys)远程代码执行漏洞 | Important |
| Windows | CVE-2026-57091 | Windows File History Service权限提升漏洞 | Important |
| Windows | CVE-2026-57093 | Windows Ancillary Function Driver for WinSock权限提升漏洞 | Important |
| Windows | CVE-2026-57095 | Win32k权限提升漏洞 | Important |
| Windows | CVE-2026-57096 | Windows Routing and Remote Access Service (RRAS)权限提升漏洞 | Important |
| Windows | CVE-2026-57097 | Microsoft XML安全功能绕过漏洞 | Important |
| Visual Studio Code | CVE-2026-57101 | Visual Studio Code安全功能绕过漏洞 | Important |
| Visual Studio Code | CVE-2026-57102 | Visual Studio Code安全功能绕过漏洞 | Important |
| Windows | CVE-2026-57107 | Windows Admin Center权限提升漏洞 | Important |
| .NET 8.0 installed on Windows,.NET 8.0 installed on Linux,.NET 9.0 installed on Linux,.NET 10.0 installed on Linux,.NET 8.0 installed on Mac OS,.NET 9.0 installed on Windows,.NET 9.0 installed on Mac OS,.NET 10.0 installed on Mac OS | CVE-2026-57108 | .NET拒绝服务漏洞 | Important |
| Open Source Software | CVE-2026-57968 | Windows Subsystem for Linux (WSL2) Kernel权限提升漏洞 | Important |
| Azure | CVE-2026-57969 | Azure CycleCloud权限提升漏洞 | Important |
| Open Source Software | CVE-2026-57973 | Windows Subsystem for Linux (WSL2) Kernel篡改漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57974 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57975 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Windows | CVE-2026-57976 | Windows Active Directory Domain Services拒绝服务漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57977 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Windows | CVE-2026-57979 | Windows Remote Desktop Protocol (RDP)信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57981 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Windows | CVE-2026-57982 | Windows Remote Desktop Protocol (RDP)信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57983 | Microsoft Edge (Chromium-based)安全功能绕过漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57984 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57985 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57986 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57987 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57988 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57991 | Microsoft Edge (Chromium-based)信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57992 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-57993 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58276 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Office | CVE-2026-58277 | Microsoft SharePoint权限提升漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58278 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Azure | CVE-2026-58279 | Azure CycleCloud权限提升漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58281 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58282 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58283 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58284 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58285 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58286 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58287 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58288 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58289 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58290 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58291 | Microsoft Edge (Chromium-based)信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58292 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58293 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58294 | Microsoft Edge (Chromium-based)远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58295 | Microsoft Edge (Chromium-based)安全功能绕过漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58296 | Microsoft Edge for Android信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58297 | Microsoft Edge for Android信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58298 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58299 | Microsoft Edge for Android远程代码执行漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58300 | Microsoft Edge for Android信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58522 | Microsoft Edge for Android信息泄露漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58523 | Microsoft Edge for Android安全功能绕过漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58524 | Microsoft Edge (Chromium-based)欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58525 | Microsoft Edge (Chromium-based)安全功能绕过漏洞 | Important |
| Windows | CVE-2026-58526 | Windows Storage权限提升漏洞 | Important |
| Windows | CVE-2026-58527 | Windows Runtime权限提升漏洞 | Important |
| Windows | CVE-2026-58528 | Windows USB Audio Class Driver信息泄露漏洞 | Important |
| Windows | CVE-2026-58529 | Windows Active Directory Federation Services (ADFS)信息泄露漏洞 | Important |
| Windows | CVE-2026-58530 | Windows Resilient File System (ReFS)远程代码执行漏洞 | Important |
| Windows | CVE-2026-58531 | Windows SMB权限提升漏洞 | Important |
| Windows | CVE-2026-58532 | Windows Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-58533 | Windows Remote Desktop Client信息泄露漏洞 | Important |
| Windows | CVE-2026-58534 | Windows Input Method Editor (IME)权限提升漏洞 | Important |
| Windows | CVE-2026-58535 | Windows Remote Desktop Client信息泄露漏洞 | Important |
| Windows | CVE-2026-58536 | Windows Cloud Files Mini Filter Driver权限提升漏洞 | Important |
| Windows | CVE-2026-58537 | Microsoft NAT Helper Components (ipnathlp.dll)权限提升漏洞 | Important |
| Windows | CVE-2026-58538 | Windows Bluetooth Service权限提升漏洞 | Important |
| Windows | CVE-2026-58539 | Windows Remote Desktop Client信息泄露漏洞 | Important |
| Windows | CVE-2026-58540 | Windows Installer权限提升漏洞 | Important |
| Windows | CVE-2026-58541 | Microsoft DWM Core Library权限提升漏洞 | Important |
| Windows | CVE-2026-58543 | Universal Print Management Service权限提升漏洞 | Important |
| Windows | CVE-2026-58544 | Windows Management Services权限提升漏洞 | Important |
| Windows | CVE-2026-58545 | Windows Kernel安全功能绕过漏洞 | Important |
| Windows | CVE-2026-58546 | Windows Remote Desktop Client信息泄露漏洞 | Important |
| Windows | CVE-2026-58547 | Windows Universal Plug and Play (UPnP) Device Host权限提升漏洞 | Important |
| Windows | CVE-2026-58594 | Remote Desktop Client远程代码执行漏洞 | Important |
| Apps | CVE-2026-58595 | Microsoft Bing App for IOS欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-58596 | Microsoft Edge (Chromium-based)权限提升漏洞 | Important |
| Windows | CVE-2026-58601 | Virtual Hard Disk (VHD) Miniport Driver Elevation of Privilege Vulernability | Important |
| Windows | CVE-2026-58602 | Windows Kernel-Mode Driver权限提升漏洞 | Important |
| Windows | CVE-2026-58609 | Windows Graphics Component远程代码执行漏洞 | Important |
| Windows | CVE-2026-58610 | Microsoft Windows Media Foundation远程代码执行漏洞 | Important |
| Windows | CVE-2026-58613 | Windows Cloud Files Mini Filter Driver权限提升漏洞 | Important |
| Windows | CVE-2026-58614 | Windows Kernel安全功能绕过漏洞 | Important |
| Apps | CVE-2026-58617 | M365 Copilot for iOS权限提升漏洞 | Important |
| Microsoft Office | CVE-2026-58618 | Microsoft Excel远程代码执行漏洞 | Important |
| Windows | CVE-2026-58619 | Windows Sensor Data Service权限提升漏洞 | Important |
| Windows | CVE-2026-58626 | Windows Remote Desktop Services远程代码执行漏洞 | Important |
| Windows | CVE-2026-58627 | Windows DHCP Server拒绝服务漏洞 | Important |
| Windows | CVE-2026-58628 | Windows Wireless Network Manager权限提升漏洞 | Important |
| Windows | CVE-2026-58629 | DirectX Graphics Kernel权限提升漏洞 | Important |
| Windows | CVE-2026-58631 | Windows Admin Center (WAC)远程代码执行漏洞 | Important |
| Windows | CVE-2026-58632 | Windows Win32 Kernel Subsystem权限提升漏洞 | Important |
| Windows | CVE-2026-58633 | Desktop Window Manager权限提升漏洞 | Important |
| Windows | CVE-2026-58634 | Desktop Window Manager权限提升漏洞 | Important |
| Windows | CVE-2026-58635 | Windows Narrator Braille权限提升漏洞 | Important |
| Apps | CVE-2026-58636 | Microsoft PC Manager权限提升漏洞 | Important |
| Windows | CVE-2026-58637 | Windows Client-Side Caching权限提升漏洞 | Important |
| Windows | CVE-2026-58638 | Windows Boot Loader安全功能绕过漏洞 | Important |
| Windows | CVE-2026-58640 | Windows NTFS远程代码执行漏洞 | Important |
| Power BI Report Server | CVE-2026-58647 | Microsoft PowerBI Report Server欺骗漏洞 | Important |
| Microsoft Edge (Chromium-based) | CVE-2026-45488 | Microsoft Edge (Chromium-based)欺骗漏洞 | Moderate |
| Microsoft Edge (Chromium-based) | CVE-2026-45489 | Microsoft Edge (Chromium-based)欺骗漏洞 | Moderate |
| Other | CVE-2026-55145 | Outlook Copilot篡改漏洞 | Moderate |
| Microsoft Edge (Chromium-based) | CVE-2026-55945 | Microsoft Edge (Chromium-based)信息泄露漏洞 | Moderate |
| Microsoft Office | CVE-2026-56164 | Microsoft SharePoint Server权限提升漏洞 | Moderate |
| Windows | CVE-2026-56181 | Windows Network Address Translation (NAT)欺骗漏洞 | Moderate |
| Microsoft Edge (Chromium-based) | CVE-2026-58597 | Microsoft Edge (Chromium-based)欺骗漏洞 | Low |
声明
本安全公告仅用来描述可能存在的安全问题,绿盟科技不为此安全公告提供任何保证或承诺。由于传播、利用此安全公告所提供的信息而造成的任何直接或者间接的后果及损失,均由使用者本人负责,绿盟科技以及安全公告作者不为此承担任何责任。
绿盟科技拥有对此安全公告的修改和解释权。如欲转载或传播此安全公告,必须保证此安全公告的完整性,包括版权声明等全部内容。未经绿盟科技允许,不得任意修改或者增减此安全公告内容,不得以任何方式将其用于商业目的。
