□ 개요
o Microsoft 社는 자사 제품에서 발생하는 보안위협에 따른 정기 보안 업데이트 발표
o 영향받는 버전을 사용 중인 시스템 사용자는 해결 방안에 따라 최신 버전으로 업데이트 권고
□ 5월 보안업데이트 개요 (총 16 종)
o 등급 : 긴급 (Critical) 12 종 , 중요 (Important) 4 종
o 발표일 : 2026.05.12.(화)
o 업데이트 내용
|
제품군 |
중요도 |
영향 |
|---|---|---|
|
Windows 11 v26H1 |
긴급 |
권한 상승 |
|
Windows 11 v25H2 |
긴급 |
권한 상승 |
|
Windows 11 v24H2 |
긴급 |
권한 상승 |
|
Windows 11 v23H2 |
긴급 |
권한 상승 |
|
Windows Server 2025, Windows Server 2025(Server Core 설치) |
긴급 |
권한 상승 |
|
Windows Server 2022 23H2 버전(Server Core 설치), Windows Server 2022, Windows Server 2022(Server Core 설치) |
긴급 |
권한 상승 |
|
Windows Server 2019 |
긴급 |
권한 상승 |
|
Windows Server 2016 |
긴급 |
권한 상승 |
|
Windows Admin Center |
중요 |
권한 상승 |
|
Microsoft Office |
긴급 |
원격 코드 실행 |
|
Microsoft SharePoint |
긴급 |
원격 코드 실행 |
|
Microsoft .NET |
중요 |
권한 상승 |
|
Microsoft Visual Studio |
중요 |
보안 기능 우회 |
|
Microsoft Dynamics 365 |
긴급 |
원격 코드 실행 |
|
Microsoft SQL Server |
중요 |
원격 코드 실행 |
|
Microsoft Azure |
긴급 |
권한 상승 |
[참고 사이트]
[1] (한글) https://msrc.microsoft.com/update-guide/ko-kr/
[2] (영문) https://msrc.microsoft.com/update-guide/en-us/
[3] https://msrc.microsoft.com/update-guide/releaseNote/2026-May
o 취약점 요약 정보 (총 265개)
|
제품 카테고리 |
CVE 번호 |
CVE 제목 |
|---|---|---|
|
Windows 서식 있는 텍스트 편집 |
CVE-2026-21530 |
Windows Rich Text Edit Remote Code Execution Vulnerability |
|
M365 Copilot |
CVE-2026-26129 |
M365 Copilot Information Disclosure Vulnerability |
|
M365 Copilot |
CVE-2026-26164 |
M365 Copilot Information Disclosure Vulnerability |
|
Windows 네이티브 WiFi 미니포트 드라이버 |
CVE-2026-32161 |
Windows Native WiFi Miniport Driver Remote Code Execution Vulnerability |
|
Windows 서식 있는 텍스트 편집 컨트롤 |
CVE-2026-32170 |
Windows Rich Text Edit Control Remote Code Execution Vulnerability |
|
.NET |
CVE-2026-32175 |
.NET Information Disclosure Vulnerability |
|
.NET |
CVE-2026-32177 |
.NET Remote Code Execution Vulnerability |
|
Microsoft Teams |
CVE-2026-32185 |
Microsoft Teams Information Disclosure Vulnerability |
|
Azure Monitor 에이전트 |
CVE-2026-32204 |
Azure Monitor Agent Elevation of Privilege Vulnerability |
|
Azure Machine Learning |
CVE-2026-32207 |
Azure Machine Learning Remote Code Execution Vulnerability |
|
Windows 필터링 플랫폼(WFP) |
CVE-2026-32209 |
Windows Filtering Platform (WFP) Information Disclosure Vulnerability |
|
Azure Managed Instance for Apache Cassandra |
CVE-2026-33109 |
Azure Managed Instance for Apache Cassandra Elevation of Privilege Vulnerability |
|
Microsoft Office SharePoint |
CVE-2026-33110 |
Microsoft Office SharePoint Remote Code Execution Vulnerability |
|
Copilot Chat(Microsoft Edge) |
CVE-2026-33111 |
Copilot Chat in Microsoft Edge Information Disclosure Vulnerability |
|
Microsoft Office SharePoint |
CVE-2026-33112 |
Microsoft Office SharePoint Remote Code Execution Vulnerability |
|
Azure SDK |
CVE-2026-33117 |
Azure SDK Elevation of Privilege Vulnerability |
|
Microsoft Dynamics 365 Customer Insights |
CVE-2026-33821 |
Microsoft Dynamics 365 Customer Insights Elevation of Privilege Vulnerability |
|
Microsoft Teams |
CVE-2026-33823 |
Microsoft Teams Elevation of Privilege Vulnerability |
|
Azure Machine Learning |
CVE-2026-33833 |
Azure Machine Learning Spoofing Vulnerability |
|
Windows 이벤트 로그 서비스 |
CVE-2026-33834 |
Windows Event Logging Service Elevation of Privilege Vulnerability |
|
Windows 클라우드 파일 미니 필터 드라이버 |
CVE-2026-33835 |
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
|
Windows TCP/IP |
CVE-2026-33837 |
Windows TCP/IP Elevation of Privilege Vulnerability |
|
Windows 메시지 큐 |
CVE-2026-33838 |
Windows Message Queuing Elevation of Privilege Vulnerability |
|
Windows Win32K - GRFX |
CVE-2026-33839 |
Windows Win32K - GRFX Elevation of Privilege Vulnerability |
|
Windows Win32K - ICOMP |
CVE-2026-33840 |
Windows Win32K - ICOMP Elevation of Privilege Vulnerability |
|
Windows 커널 |
CVE-2026-33841 |
Windows Kernel Elevation of Privilege Vulnerability |
|
Azure Managed Instance for Apache Cassandra |
CVE-2026-33844 |
Azure Managed Instance for Apache Cassandra Elevation of Privilege Vulnerability |
|
Microsoft 파트너 센터 |
CVE-2026-34327 |
Microsoft Partner Center Information Disclosure Vulnerability |
|
Windows 메시지 큐 |
CVE-2026-34329 |
Windows Message Queuing Remote Code Execution Vulnerability |
|
Windows Win32K - GRFX |
CVE-2026-34330 |
Windows Win32K - GRFX Elevation of Privilege Vulnerability |
|
Windows Win32K - GRFX |
CVE-2026-34331 |
Windows Win32K - GRFX Elevation of Privilege Vulnerability |
|
Windows 커널 모드 드라이버 |
CVE-2026-34332 |
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability |
|
Windows Win32K - GRFX |
CVE-2026-34333 |
Windows Win32K - GRFX Elevation of Privilege Vulnerability |
|
Windows TCP/IP |
CVE-2026-34334 |
Windows TCP/IP Elevation of Privilege Vulnerability |
|
Windows DWM 핵심 라이브러리 |
CVE-2026-34336 |
Windows DWM Core Library Elevation of Privilege Vulnerability |
|
Windows 클라우드 파일 미니 필터 드라이버 |
CVE-2026-34337 |
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
|
Windows 전화 통신 서비스 |
CVE-2026-34338 |
Windows Telephony Service Elevation of Privilege Vulnerability |
|
Windows LDAP - Lightweight Directory Access Protocol |
CVE-2026-34339 |
Windows LDAP - Lightweight Directory Access Protocol Denial of Service Vulnerability |
|
Windows 예상 파일 시스템 |
CVE-2026-34340 |
Windows Projected File System Elevation of Privilege Vulnerability |
|
Windows Link-Layer Discovery Protocol(LLDP) |
CVE-2026-34341 |
Windows Link-Layer Discovery Protocol (LLDP) Elevation of Privilege Vulnerability |
|
Windows 인쇄 스풀러 구성 요소 |
CVE-2026-34342 |
Windows Print Spooler Components Elevation of Privilege Vulnerability |
|
Windows 애플리케이션 ID(AppID) 하위 시스템 |
CVE-2026-34343 |
Windows Application ID (AppID) Subsystem Elevation of Privilege Vulnerability |
|
WinSock용 Windows 보조 기능 드라이버 |
CVE-2026-34344 |
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
|
WinSock용 Windows 보조 기능 드라이버 |
CVE-2026-34345 |
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
|
Windows Win32K - GRFX |
CVE-2026-34347 |
Windows Win32K - GRFX Elevation of Privilege Vulnerability |
|
Windows Storport 미니포트 드라이버 |
CVE-2026-34350 |
Windows Storport Miniport Driver Denial of Service Vulnerability |
|
Windows TCP/IP |
CVE-2026-34351 |
Windows TCP/IP Elevation of Privilege Vulnerability |
|
Windows 저장소 공간 컨트롤러 |
CVE-2026-35415 |
Windows Storage Spaces Controller Elevation of Privilege Vulnerability |
|
WinSock용 Windows 보조 기능 드라이버 |
CVE-2026-35416 |
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
|
Windows Win32K - ICOMP |
CVE-2026-35417 |
Windows Win32K - ICOMP Elevation of Privilege Vulnerability |
|
Windows 클라우드 파일 미니 필터 드라이버 |
CVE-2026-35418 |
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
|
Windows DWM 핵심 라이브러리 |
CVE-2026-35419 |
Windows DWM Core Library Information Disclosure Vulnerability |
|
Windows 커널 |
CVE-2026-35420 |
Windows Kernel Elevation of Privilege Vulnerability |
|
Windows GDI |
CVE-2026-35421 |
Windows GDI Remote Code Execution Vulnerability |
|
Windows TCP/IP |
CVE-2026-35422 |
Windows TCP/IP Tampering Vulnerability |
|
텔넷 클라이언트 |
CVE-2026-35423 |
Telnet Client Spoofing Vulnerability |
|
Windows IKE(Internet Key Exchange) 프로토콜 |
CVE-2026-35424 |
Windows Internet Key Exchange (IKE) Protocol Denial of Service Vulnerability |
|
Azure Cloud Shell |
CVE-2026-35428 |
Azure Cloud Shell Elevation of Privilege Vulnerability |
|
Android용 Microsoft Edge |
CVE-2026-35429 |
Microsoft Edge for Android Spoofing Vulnerability |
|
.NET |
CVE-2026-35433 |
.NET Remote Code Execution Vulnerability |
|
Azure AI Foundry M365 게시된 에이전트 |
CVE-2026-35435 |
Azure AI Foundry M365 Published Agent Information Disclosure Vulnerability |
|
Microsoft Office 간편 실행 |
CVE-2026-35436 |
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability |
|
Windows 관리 센터 |
CVE-2026-35438 |
Windows Admin Center Elevation of Privilege Vulnerability |
|
Microsoft Office SharePoint |
CVE-2026-35439 |
Microsoft Office SharePoint Remote Code Execution Vulnerability |
|
Microsoft Office Word |
CVE-2026-35440 |
Microsoft Office Word Information Disclosure Vulnerability |
|
Microsoft Office SharePoint |
CVE-2026-40357 |
Microsoft Office SharePoint Remote Code Execution Vulnerability |
|
Microsoft Office |
CVE-2026-40358 |
Microsoft Office Remote Code Execution Vulnerability |
|
Microsoft Office Excel |
CVE-2026-40359 |
Microsoft Office Excel Remote Code Execution Vulnerability |
|
Microsoft Office Excel |
CVE-2026-40360 |
Microsoft Office Excel Remote Code Execution Vulnerability |
|
Microsoft Office Word |
CVE-2026-40361 |
Microsoft Office Word Remote Code Execution Vulnerability |
|
Microsoft Office Excel |
CVE-2026-40362 |
Microsoft Office Excel Remote Code Execution Vulnerability |
|
Microsoft Office |
CVE-2026-40363 |
Microsoft Office Remote Code Execution Vulnerability |
|
Microsoft Office Word |
CVE-2026-40364 |
Microsoft Office Word Remote Code Execution Vulnerability |
|
Microsoft Office SharePoint |
CVE-2026-40365 |
Microsoft Office SharePoint Remote Code Execution Vulnerability |
|
Microsoft Office Word |
CVE-2026-40366 |
Microsoft Office Word Remote Code Execution Vulnerability |
|
Microsoft Office Word |
CVE-2026-40367 |
Microsoft Office Word Remote Code Execution Vulnerability |
|
Microsoft Office SharePoint |
CVE-2026-40368 |
Microsoft Office SharePoint Remote Code Execution Vulnerability |
|
Windows 커널 |
CVE-2026-40369 |
Windows Kernel Elevation of Privilege Vulnerability |
|
SQL Server |
CVE-2026-40370 |
SQL Server Remote Code Execution Vulnerability |
|
Power Automate |
CVE-2026-40374 |
Power Automate Information Disclosure Vulnerability |
|
Windows 암호화 서비스 |
CVE-2026-40377 |
Windows Cryptographic Services Elevation of Privilege Vulnerability |
|
Azure Entra ID |
CVE-2026-40379 |
Azure Entra ID Elevation of Privilege Vulnerability |
|
Windows 볼륨 관리자 확장 드라이버 |
CVE-2026-40380 |
Windows Volume Manager Extension Driver Elevation of Privilege Vulnerability |
|
Azure Connected Machine Agent |
CVE-2026-40381 |
Azure Connected Machine Agent Elevation of Privilege Vulnerability |
|
Windows 전화 통신 서비스 |
CVE-2026-40382 |
Windows Telephony Service Elevation of Privilege Vulnerability |
|
Windows 공용 로그 파일 시스템 드라이버 |
CVE-2026-40397 |
Windows Common Log File System Driver Elevation of Privilege Vulnerability |
|
Windows 원격 데스크톱 |
CVE-2026-40398 |
Windows Remote Desktop Services Elevation of Privilege Vulnerability |
|
Windows TCP/IP |
CVE-2026-40399 |
Windows TCP/IP Elevation of Privilege Vulnerability |
|
Windows TCP/IP |
CVE-2026-40401 |
Windows TCP/IP Denial of Service Vulnerability |
|
Windows Hyper-V |
CVE-2026-40402 |
Windows Hyper-V Elevation of Privilege Vulnerability |
|
Windows Win32K - GRFX |
CVE-2026-40403 |
Windows Win32K - GRFX Remote Code Execution Vulnerability |
|
Windows TCP/IP |
CVE-2026-40405 |
Windows TCP/IP Denial of Service Vulnerability |
|
Windows TCP/IP |
CVE-2026-40406 |
Windows TCP/IP Information Disclosure Vulnerability |
|
Windows 공용 로그 파일 시스템 드라이버 |
CVE-2026-40407 |
Windows Common Log File System Driver Elevation of Privilege Vulnerability |
|
Windows 커널 모드 드라이버 |
CVE-2026-40408 |
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability |
|
Windows SMB 클라이언트 |
CVE-2026-40410 |
Windows SMB Client Elevation of Privilege Vulnerability |
|
Windows TCP/IP |
CVE-2026-40413 |
Windows TCP/IP Denial of Service Vulnerability |
|
Windows TCP/IP |
CVE-2026-40414 |
Windows TCP/IP Denial of Service Vulnerability |
|
Windows TCP/IP |
CVE-2026-40415 |
Windows TCP/IP Remote Code Execution Vulnerability |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-40416 |
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
|
Dynamics Business Central |
CVE-2026-40417 |
Dynamics Business Central Elevation of Privilege Vulnerability |
|
Microsoft Office 간편 실행 |
CVE-2026-40418 |
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability |
|
Microsoft Office |
CVE-2026-40419 |
Microsoft Office Elevation of Privilege Vulnerability |
|
Microsoft Office 간편 실행 |
CVE-2026-40420 |
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability |
|
Microsoft Office Word |
CVE-2026-40421 |
Microsoft Office Word Information Disclosure Vulnerability |
|
Windows 관리 센터 |
CVE-2026-41086 |
Windows Admin Center Elevation of Privilege Vulnerability |
|
WinSock용 Windows 보조 기능 드라이버 |
CVE-2026-41088 |
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
|
Windows Netlogon |
CVE-2026-41089 |
Windows Netlogon Remote Code Execution Vulnerability |
|
Microsoft Data Formulator |
CVE-2026-41094 |
Microsoft Data Formulator Remote Code Execution Vulnerability |
|
Windows 예상 파일 시스템 |
CVE-2026-41095 |
Windows Projected File System Elevation of Privilege Vulnerability |
|
Microsoft Windows DNS |
CVE-2026-41096 |
Microsoft Windows DNS Remote Code Execution Vulnerability |
|
Windows 보안 부팅 |
CVE-2026-41097 |
Windows Secure Boot Security Feature Bypass Vulnerability |
|
M365 Copilot |
CVE-2026-41100 |
M365 Copilot Information Disclosure Vulnerability |
|
Microsoft Office Word |
CVE-2026-41101 |
Microsoft Office Word Remote Code Execution Vulnerability |
|
Microsoft Office PowerPoint |
CVE-2026-41102 |
Microsoft Office PowerPoint Remote Code Execution Vulnerability |
|
Jira 및 Confluence용 Microsoft SSO 플러그인 |
CVE-2026-41103 |
Microsoft SSO Plugin for Jira and Confluence Elevation of Privilege Vulnerability |
|
Azure 알림 서비스 |
CVE-2026-41105 |
Azure Notification Service Elevation of Privilege Vulnerability |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-41107 |
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
|
GitHub Copilot 및 Visual Studio |
CVE-2026-41109 |
GitHub Copilot and Visual Studio Remote Code Execution Vulnerability |
|
Visual Studio Code |
CVE-2026-41610 |
Visual Studio Code Information Disclosure Vulnerability |
|
Visual Studio Code |
CVE-2026-41611 |
Visual Studio Code Remote Code Execution Vulnerability |
|
Visual Studio Code |
CVE-2026-41612 |
Visual Studio Code Information Disclosure Vulnerability |
|
Visual Studio Code |
CVE-2026-41613 |
Visual Studio Code Remote Code Execution Vulnerability |
|
데스크톱용 M365 Copilot |
CVE-2026-41614 |
M365 Copilot for Desktop Information Disclosure Vulnerability |
|
Azure Logic Apps |
CVE-2026-42823 |
Azure Logic Apps Elevation of Privilege Vulnerability |
|
Windows 전화 통신 서비스 |
CVE-2026-42825 |
Windows Telephony Service Elevation of Privilege Vulnerability |
|
Azure DevOps |
CVE-2026-42826 |
Azure DevOps Elevation of Privilege Vulnerability |
|
Azure Monitor 에이전트 |
CVE-2026-42830 |
Azure Monitor Agent Tampering Vulnerability |
|
Android용 Office |
CVE-2026-42831 |
Microsoft Office for Android Remote Code Execution Vulnerability |
|
Microsoft Office Excel |
CVE-2026-42832 |
Microsoft Office Excel Information Disclosure Vulnerability |
|
Microsoft Dynamics 365(온-프레미스) |
CVE-2026-42833 |
Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-42838 |
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-42891 |
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability |
|
M365 Copilot |
CVE-2026-42893 |
M365 Copilot Tampering Vulnerability |
|
Windows DWM 핵심 라이브러리 |
CVE-2026-42896 |
Windows DWM Core Library Elevation of Privilege Vulnerability |
|
Microsoft Dynamics 365(온-프레미스) |
CVE-2026-42898 |
Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability |
|
ASP.NET |
CVE-2026-42899 |
ASP.NET Denial of Service Vulnerability |
|
AMD CPU Branch |
CVE-2025-54518 |
AMD CPU OP Cache Corruption Vulnerability |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7896 |
Integer overflow in Blink |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7897 |
Use after free in Mobile |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7898 |
Use after free in Chromoting |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7899 |
Out of bounds read and write in V8 |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7900 |
Heap buffer overflow in ANGLE |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7901 |
Use after free in ANGLE |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7902 |
Out of bounds memory access in V8 |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7903 |
Integer overflow in ANGLE |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7904 |
Out of bounds read in Fonts |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7905 |
Insufficient validation of untrusted input in Media |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7906 |
Use after free in SVG |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7907 |
Use after free in DOM |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7908 |
Use after free in Fullscreen |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7909 |
Inappropriate implementation in ServiceWorker |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7910 |
Use after free in Views |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7911 |
Use after free in Aura |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7912 |
Integer overflow in GPU |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7913 |
Insufficient policy enforcement in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7914 |
Type Confusion in Accessibility |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7915 |
Insufficient data validation in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7916 |
Insufficient data validation in InterestGroups |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7917 |
Use after free in Fullscreen |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7918 |
Use after free in GPU |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7919 |
Use after free in Aura |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7920 |
Use after free in Skia |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7921 |
Use after free in Passwords |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7922 |
Use after free in ServiceWorker |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7923 |
Out of bounds write in Skia |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7924 |
Uninitialized Use in Dawn |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7925 |
Use after free in Chromoting |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7926 |
Use after free in PresentationAPI |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7927 |
Type Confusion in Runtime |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7928 |
Use after free in WebRTC |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7929 |
Use after free in MediaRecording |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7930 |
Insufficient validation of untrusted input in Cookies |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7931 |
Insufficient validation of untrusted input in iOS |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7932 |
Insufficient policy enforcement in Downloads |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7933 |
Out of bounds read in WebCodecs |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7934 |
Insufficient validation of untrusted input in Popup Blocker |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7935 |
Inappropriate implementation in Speech |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7936 |
Object lifecycle issue in V8 |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7937 |
Insufficient policy enforcement in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7938 |
Use after free in CSS |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7939 |
Inappropriate implementation in SanitizerAPI |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7940 |
Use after free in V8 |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7941 |
Insufficient validation of untrusted input in Mobile |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7942 |
Integer overflow in ANGLE |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7943 |
Insufficient validation of untrusted input in ANGLE |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7944 |
Insufficient validation of untrusted input in Persistent Cache |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7945 |
Insufficient validation of untrusted input in COOP |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7946 |
Insufficient policy enforcement in WebUI |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7947 |
Insufficient validation of untrusted input in Network |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7948 |
Race in Chromoting |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7949 |
Out of bounds read in Skia |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7950 |
Out of bounds read and write in GFX |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7951 |
Out of bounds write in WebRTC |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7952 |
Insufficient policy enforcement in Extensions |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7953 |
Insufficient validation of untrusted input in Omnibox |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7954 |
Race in Shared Storage |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7955 |
Uninitialized Use in GPU |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7956 |
Use after free in Navigation |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7957 |
Out of bounds write in Media |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7958 |
Inappropriate implementation in ServiceWorker |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7959 |
Inappropriate implementation in Navigation |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7960 |
Race in Speech |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7961 |
Insufficient validation of untrusted input in Permissions |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7962 |
Insufficient policy enforcement in DirectSockets |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7963 |
Inappropriate implementation in ServiceWorker |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7964 |
Insufficient validation of untrusted input in FileSystem |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7965 |
Insufficient validation of untrusted input in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7966 |
Insufficient validation of untrusted input in SiteIsolation |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7967 |
Insufficient validation of untrusted input in Navigation |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7968 |
Insufficient validation of untrusted input in CORS |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7969 |
Integer overflow in Network |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7970 |
Use after free in TopChrome |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7971 |
Inappropriate implementation in ORB |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7972 |
Uninitialized Use in GPU |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7973 |
Integer overflow in Dawn |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7974 |
Use after free in Blink |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7975 |
Use after free in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7976 |
Use after free in Views |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7977 |
Inappropriate implementation in Canvas |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7978 |
Inappropriate implementation in Companion |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7979 |
Inappropriate implementation in Media |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7980 |
Use after free in WebAudio |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7981 |
Out of bounds read in Codecs |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7982 |
Uninitialized Use in WebCodecs |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7983 |
Out of bounds read in Dawn |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7984 |
Use after free in ReadingMode |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7985 |
Use after free in GPU |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7986 |
Insufficient policy enforcement in Autofill |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7987 |
Use after free in WebRTC |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7988 |
Type Confusion in WebRTC |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7989 |
Insufficient data validation in DataTransfer |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7990 |
Insufficient validation of untrusted input in Updater |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7991 |
Use after free in UI |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7992 |
Insufficient validation of untrusted input in UI |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7993 |
Insufficient validation of untrusted input in Payments |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7994 |
Inappropriate implementation in Chromoting |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7995 |
Out of bounds read in AdFilter |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7996 |
Insufficient validation of untrusted input in SSL |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7997 |
Insufficient validation of untrusted input in Updater |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7998 |
Insufficient validation of untrusted input in Dialog |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-7999 |
Inappropriate implementation in V8 |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8000 |
Insufficient validation of untrusted input in ChromeDriver |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8001 |
Use after free in Printing |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8002 |
Use after free in Audio |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8003 |
Insufficient validation of untrusted input in TabGroups |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8004 |
Insufficient policy enforcement in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8005 |
Insufficient validation of untrusted input in Cast |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8006 |
Insufficient policy enforcement in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8007 |
Insufficient validation of untrusted input in Cast |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8008 |
Inappropriate implementation in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8009 |
Inappropriate implementation in Cast |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8010 |
Insufficient validation of untrusted input in SiteIsolation |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8011 |
Insufficient policy enforcement in Search |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8012 |
Inappropriate implementation in MHTML |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8013 |
Insufficient validation of untrusted input in FedCM |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8014 |
Inappropriate implementation in Preload |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8015 |
Inappropriate implementation in Media |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8016 |
Use after free in WebRTC |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8017 |
Side-channel information leakage in Media |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8018 |
Insufficient policy enforcement in DevTools |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8019 |
Insufficient policy enforcement in WebApp |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8020 |
Uninitialized Use in GPU |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8021 |
Script injection in UI |
|
Microsoft Edge(Chromium 기반) |
CVE-2026-8022 |
Inappropriate implementation in MHTML |
□ 출처
o KISA 보호나라 & KrCERT/CC