Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Microsoft — Vulnerabilities & Security Advisories 8272

Browse all 8272 CVE security advisories affecting Microsoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Microsoft:Windows 10 Version 1809WindowsWindows 10 Version 1507Windows 10 Version 1803Windows 10 Version 1607Windows Server 2019Microsoft 365 Apps for EnterpriseMicrosoft SharePoint Enterprise Server 2016Microsoft Edge (Chromium-based)Microsoft Office 2019Microsoft EdgeWindows 7Windows 10 Version 2004Windows 10 Version 20H2Windows 11 Version 24H2Windows 10 Version 2004 for 32-bit SystemsAzure Site Recovery VMWare to AzureWindows 10 Version 1703Microsoft SQL Server 2017 (GDR)Windows Server 2022Microsoft OfficeWindows Server 2016Microsoft SharePoint Enterprise ServerInternet Explorer 9Windows 11 version 22H2ChakraCoreInternet Explorer 11Windows Server 2008 R2 Service Pack 1Windows 10 Version 21H2Visual Studio Code
CVE IDTitleCVSSSeverityPublished
CVE-2026-27906 Windows Hello Security Feature Bypass Vulnerability — Windows 10 Version 21H2CWE-20 4.4 Medium2026-04-14
CVE-2026-27907 Windows Storage Spaces Controller Elevation of Privilege Vulnerability — Windows 11 version 22H3CWE-191 7.8 High2026-04-14
CVE-2026-26181 Microsoft Brokering File System Elevation of Privilege Vulnerability — Windows 11 version 22H3CWE-416 7.8 High2026-04-14
CVE-2026-26183 Remote Access Management service/API (RPC server) Elevation of Privilege Vulnerability — Windows Server 2012CWE-284 7.8 High2026-04-14
CVE-2026-26180 Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-122 7.8 High2026-04-14
CVE-2026-26179 Windows Kernel Elevation of Privilege Vulnerability — Windows 11 version 22H3CWE-415 7.8 High2026-04-14
CVE-2026-26175 Windows Boot Manager Security Feature Bypass Vulnerability — Windows 10 Version 1607CWE-908 4.6 Medium2026-04-14
CVE-2026-26174 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-362 7.0 High2026-04-14
CVE-2026-26166 Windows Shell Elevation of Privilege Vulnerability — Windows 11 version 22H3CWE-415 7.0 High2026-04-14
CVE-2026-26167 Windows Push Notifications Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-362 8.8 High2026-04-14
CVE-2026-26165 Windows Shell Elevation of Privilege Vulnerability — Windows 11 version 22H3CWE-416 7.0 High2026-04-14
CVE-2026-26162 Windows OLE Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-843 7.8 High2026-04-14
CVE-2026-26161 Windows Sensor Data Service Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-822 7.8 High2026-04-14
CVE-2026-26155 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability — Windows 10 Version 1607CWE-126 6.5 Medium2026-04-14
CVE-2026-26160 Remote Desktop Licensing Service Elevation of Privilege Vulnerability — Windows 10 Version 1607CWE-306 7.8 High2026-04-14
CVE-2026-26154 Windows Server Update Service (WSUS) Tampering Vulnerability — Windows Server 2012CWE-20 7.5 High2026-04-14
CVE-2026-26151 Remote Desktop Spoofing Vulnerability — Windows 10 Version 1607CWE-357 7.1 High2026-04-14
CVE-2026-26149 Microsoft Power Apps Spoofing Vulnerability — Microsoft Power AppsCWE-150 9.0 Critical2026-04-14
CVE-2026-23670 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability — Windows 10 Version 1607CWE-822 5.7 Medium2026-04-14
CVE-2026-25184 Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability — Windows 11 version 22H3CWE-362 7.0 High2026-04-14
CVE-2026-20945 Microsoft SharePoint Server Spoofing Vulnerability — Microsoft SharePoint Enterprise Server 2016CWE-79 4.6 Medium2026-04-14
CVE-2026-23653 GitHub Copilot and Visual Studio Code Information Disclosure Vulnerability — Microsoft Visual Studio Code CoPilot Chat ExtensionCWE-77 5.7 Medium2026-04-14
CVE-2026-20930 Windows Management Services Elevation of Privilege Vulnerability — Windows 10 Version 1809CWE-362 7.8 High2026-04-14
CVE-2026-33118 Microsoft Edge (Chromium-based) Spoofing Vulnerability — Microsoft Edge (Chromium-based)CWE-451 4.3 Medium2026-04-10
CVE-2026-33119 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability — Microsoft Edge for AndroidCWE-451 5.4 Medium2026-04-10
CVE-2026-35199 SymCrypt SymCryptXmssSign function - Heap overflow via 64->32-bit leaf-count truncation — SymCryptCWE-122 6.1 Medium2026-04-06
CVE-2026-32186 Microsoft Bing Elevation of Privilege Vulnerability — Microsoft BingCWE-918 10.0 Critical2026-04-03
CVE-2026-32211 Azure MCP Server Information Disclosure Vulnerability — Azure Web AppsCWE-306 9.1 Critical2026-04-02
CVE-2026-32173 Azure SRE Agent Information Disclosure Vulnerability — Azure SRE Agent Gateway - SignalR HubCWE-287 8.6 High2026-04-02
CVE-2026-26135 Azure Custom Locations Resource Provider (RP) Elevation of Privilege Vulnerability — Azure Custom Locations Resource ProviderCWE-918 9.6 Critical2026-04-02

This page lists every published CVE security advisory associated with Microsoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.