□ 5월 보안업데이트 개요 (총 16 종)
o 등급 : 긴급 (Critical) 12 종 , 중요 (Important) 4 종
o 발표일 : 2026.05.12.(화)
o 업데이트 내용
| 제품군 | 중요도 | 영향 |
|---|---|---|
| Windows 11 v26H1 | 긴급 | 권한 상승 |
| Windows 11 v25H2 | 긴급 | 권한 상승 |
| Windows 11 v24H2 | 긴급 | 권한 상승 |
| Windows 11 v23H2 | 긴급 | 권한 상승 |
| Windows Server 2025, Windows Server 2025(Server Core 설치) | 긴급 | 권한 상승 |
| Windows Server 2022 23H2 버전(Server Core 설치), Windows Server 2022, Windows Server 2022(Server Core 설치) | 긴급 | 권한 상승 |
| Windows Server 2019 | 긴급 | 권한 상승 |
| Windows Server 2016 | 긴급 | 권한 상승 |
| Windows Admin Center | 중요 | 권한 상승 |
| Microsoft Office | 긴급 | 원격 코드 실행 |
| Microsoft SharePoint | 긴급 | 원격 코드 실행 |
| Microsoft .NET | 중요 | 권한 상승 |
| Microsoft Visual Studio | 중요 | 보안 기능 우회 |
| Microsoft Dynamics 365 | 긴급 | 원격 코드 실행 |
| Microsoft SQL Server | 중요 | 원격 코드 실행 |
| Microsoft Azure | 긴급 | 권한 상승 |
[참고 사이트]
[1] (한글) https://msrc.microsoft.com/update-guide/ko-kr/
[2] (영문) https://msrc.microsoft.com/update-guide/en-us/
[3] https://msrc.microsoft.com/update-guide/releaseNote/2026-May
o 취약점 요약 정보 (총 265개)
| 제품 카테고리 | CVE 번호 | CVE 제목 |
|---|---|---|
| Windows 서식 있는 텍스트 편집 | CVE-2026-21530 | Windows Rich Text Edit Remote Code Execution Vulnerability |
| M365 Copilot | CVE-2026-26129 | M365 Copilot Information Disclosure Vulnerability |
| M365 Copilot | CVE-2026-26164 | M365 Copilot Information Disclosure Vulnerability |
| Windows 네이티브 WiFi 미니포트 드라이버 | CVE-2026-32161 | Windows Native WiFi Miniport Driver Remote Code Execution Vulnerability |
| Windows 서식 있는 텍스트 편집 컨트롤 | CVE-2026-32170 | Windows Rich Text Edit Control Remote Code Execution Vulnerability |
| .NET | CVE-2026-32175 | .NET Information Disclosure Vulnerability |
| .NET | CVE-2026-32177 | .NET Remote Code Execution Vulnerability |
| Microsoft Teams | CVE-2026-32185 | Microsoft Teams Information Disclosure Vulnerability |
| Azure Monitor 에이전트 | CVE-2026-32204 | Azure Monitor Agent Elevation of Privilege Vulnerability |
| Azure Machine Learning | CVE-2026-32207 | Azure Machine Learning Remote Code Execution Vulnerability |
| Windows 필터링 플랫폼(WFP) | CVE-2026-32209 | Windows Filtering Platform (WFP) Information Disclosure Vulnerability |
| Azure Managed Instance for Apache Cassandra | CVE-2026-33109 | Azure Managed Instance for Apache Cassandra Elevation of Privilege Vulnerability |
| Microsoft Office SharePoint | CVE-2026-33110 | Microsoft Office SharePoint Remote Code Execution Vulnerability |
| Copilot Chat(Microsoft Edge) | CVE-2026-33111 | Copilot Chat in Microsoft Edge Information Disclosure Vulnerability |
| Microsoft Office SharePoint | CVE-2026-33112 | Microsoft Office SharePoint Remote Code Execution Vulnerability |
| Azure SDK | CVE-2026-33117 | Azure SDK Elevation of Privilege Vulnerability |
| Microsoft Dynamics 365 Customer Insights | CVE-2026-33821 | Microsoft Dynamics 365 Customer Insights Elevation of Privilege Vulnerability |
| Microsoft Teams | CVE-2026-33823 | Microsoft Teams Elevation of Privilege Vulnerability |
| Azure Machine Learning | CVE-2026-33833 | Azure Machine Learning Spoofing Vulnerability |
| Windows 이벤트 로그 서비스 | CVE-2026-33834 | Windows Event Logging Service Elevation of Privilege Vulnerability |
| Windows 클라우드 파일 미니 필터 드라이버 | CVE-2026-33835 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
| Windows TCP/IP | CVE-2026-33837 | Windows TCP/IP Elevation of Privilege Vulnerability |
| Windows 메시지 큐 | CVE-2026-33838 | Windows Message Queuing Elevation of Privilege Vulnerability |
| Windows Win32K - GRFX | CVE-2026-33839 | Windows Win32K - GRFX Elevation of Privilege Vulnerability |
| Windows Win32K - ICOMP | CVE-2026-33840 | Windows Win32K - ICOMP Elevation of Privilege Vulnerability |
| Windows 커널 | CVE-2026-33841 | Windows Kernel Elevation of Privilege Vulnerability |
| Azure Managed Instance for Apache Cassandra | CVE-2026-33844 | Azure Managed Instance for Apache Cassandra Elevation of Privilege Vulnerability |
| Microsoft 파트너 센터 | CVE-2026-34327 | Microsoft Partner Center Information Disclosure Vulnerability |
| Windows 메시지 큐 | CVE-2026-34329 | Windows Message Queuing Remote Code Execution Vulnerability |
| Windows Win32K - GRFX | CVE-2026-34330 | Windows Win32K - GRFX Elevation of Privilege Vulnerability |
| Windows Win32K - GRFX | CVE-2026-34331 | Windows Win32K - GRFX Elevation of Privilege Vulnerability |
| Windows 커널 모드 드라이버 | CVE-2026-34332 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability |
| Windows Win32K - GRFX | CVE-2026-34333 | Windows Win32K - GRFX Elevation of Privilege Vulnerability |
| Windows TCP/IP | CVE-2026-34334 | Windows TCP/IP Elevation of Privilege Vulnerability |
| Windows DWM 핵심 라이브러리 | CVE-2026-34336 | Windows DWM Core Library Elevation of Privilege Vulnerability |
| Windows 클라우드 파일 미니 필터 드라이버 | CVE-2026-34337 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
| Windows 전화 통신 서비스 | CVE-2026-34338 | Windows Telephony Service Elevation of Privilege Vulnerability |
| Windows LDAP - Lightweight Directory Access Protocol | CVE-2026-34339 | Windows LDAP - Lightweight Directory Access Protocol Denial of Service Vulnerability |
| Windows 예상 파일 시스템 | CVE-2026-34340 | Windows Projected File System Elevation of Privilege Vulnerability |
| Windows Link-Layer Discovery Protocol(LLDP) | CVE-2026-34341 | Windows Link-Layer Discovery Protocol (LLDP) Elevation of Privilege Vulnerability |
| Windows 인쇄 스풀러 구성 요소 | CVE-2026-34342 | Windows Print Spooler Components Elevation of Privilege Vulnerability |
| Windows 애플리케이션 ID(AppID) 하위 시스템 | CVE-2026-34343 | Windows Application ID (AppID) Subsystem Elevation of Privilege Vulnerability |
| WinSock용 Windows 보조 기능 드라이버 | CVE-2026-34344 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
| WinSock용 Windows 보조 기능 드라이버 | CVE-2026-34345 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
| Windows Win32K - GRFX | CVE-2026-34347 | Windows Win32K - GRFX Elevation of Privilege Vulnerability |
| Windows Storport 미니포트 드라이버 | CVE-2026-34350 | Windows Storport Miniport Driver Denial of Service Vulnerability |
| Windows TCP/IP | CVE-2026-34351 | Windows TCP/IP Elevation of Privilege Vulnerability |
| Windows 저장소 공간 컨트롤러 | CVE-2026-35415 | Windows Storage Spaces Controller Elevation of Privilege Vulnerability |
| WinSock용 Windows 보조 기능 드라이버 | CVE-2026-35416 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
| Windows Win32K - ICOMP | CVE-2026-35417 | Windows Win32K - ICOMP Elevation of Privilege Vulnerability |
| Windows 클라우드 파일 미니 필터 드라이버 | CVE-2026-35418 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
| Windows DWM 핵심 라이브러리 | CVE-2026-35419 | Windows DWM Core Library Information Disclosure Vulnerability |
| Windows 커널 | CVE-2026-35420 | Windows Kernel Elevation of Privilege Vulnerability |
| Windows GDI | CVE-2026-35421 | Windows GDI Remote Code Execution Vulnerability |
| Windows TCP/IP | CVE-2026-35422 | Windows TCP/IP Tampering Vulnerability |
| 텔넷 클라이언트 | CVE-2026-35423 | Telnet Client Spoofing Vulnerability |
| Windows IKE(Internet Key Exchange) 프로토콜 | CVE-2026-35424 | Windows Internet Key Exchange (IKE) Protocol Denial of Service Vulnerability |
| Azure Cloud Shell | CVE-2026-35428 | Azure Cloud Shell Elevation of Privilege Vulnerability |
| Android용 Microsoft Edge | CVE-2026-35429 | Microsoft Edge for Android Spoofing Vulnerability |
| .NET | CVE-2026-35433 | .NET Remote Code Execution Vulnerability |
| Azure AI Foundry M365 게시된 에이전트 | CVE-2026-35435 | Azure AI Foundry M365 Published Agent Information Disclosure Vulnerability |
| Microsoft Office 간편 실행 | CVE-2026-35436 | Microsoft Office Click-To-Run Elevation of Privilege Vulnerability |
| Windows 관리 센터 | CVE-2026-35438 | Windows Admin Center Elevation of Privilege Vulnerability |
| Microsoft Office SharePoint | CVE-2026-35439 | Microsoft Office SharePoint Remote Code Execution Vulnerability |
| Microsoft Office Word | CVE-2026-35440 | Microsoft Office Word Information Disclosure Vulnerability |
| Microsoft Office SharePoint | CVE-2026-40357 | Microsoft Office SharePoint Remote Code Execution Vulnerability |
| Microsoft Office | CVE-2026-40358 | Microsoft Office Remote Code Execution Vulnerability |
| Microsoft Office Excel | CVE-2026-40359 | Microsoft Office Excel Remote Code Execution Vulnerability |
| Microsoft Office Excel | CVE-2026-40360 | Microsoft Office Excel Remote Code Execution Vulnerability |
| Microsoft Office Word | CVE-2026-40361 | Microsoft Office Word Remote Code Execution Vulnerability |
| Microsoft Office Excel | CVE-2026-40362 | Microsoft Office Excel Remote Code Execution Vulnerability |
| Microsoft Office | CVE-2026-40363 | Microsoft Office Remote Code Execution Vulnerability |
| Microsoft Office Word | CVE-2026-40364 | Microsoft Office Word Remote Code Execution Vulnerability |
| Microsoft Office SharePoint | CVE-2026-40365 | Microsoft Office SharePoint Remote Code Execution Vulnerability |
| Microsoft Office Word | CVE-2026-40366 | Microsoft Office Word Remote Code Execution Vulnerability |
| Microsoft Office Word | CVE-2026-40367 | Microsoft Office Word Remote Code Execution Vulnerability |
| Microsoft Office SharePoint | CVE-2026-40368 | Microsoft Office SharePoint Remote Code Execution Vulnerability |
| Windows 커널 | CVE-2026-40369 | Windows Kernel Elevation of Privilege Vulnerability |
| SQL Server | CVE-2026-40370 | SQL Server Remote Code Execution Vulnerability |
| Power Automate | CVE-2026-40374 | Power Automate Information Disclosure Vulnerability |
| Windows 암호화 서비스 | CVE-2026-40377 | Windows Cryptographic Services Elevation of Privilege Vulnerability |
| Azure Entra ID | CVE-2026-40379 | Azure Entra ID Elevation of Privilege Vulnerability |
| Windows 볼륨 관리자 확장 드라이버 | CVE-2026-40380 | Windows Volume Manager Extension Driver Elevation of Privilege Vulnerability |
| Azure Connected Machine Agent | CVE-2026-40381 | Azure Connected Machine Agent Elevation of Privilege Vulnerability |
| Windows 전화 통신 서비스 | CVE-2026-40382 | Windows Telephony Service Elevation of Privilege Vulnerability |
| Windows 공용 로그 파일 시스템 드라이버 | CVE-2026-40397 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| Windows 원격 데스크톱 | CVE-2026-40398 | Windows Remote Desktop Services Elevation of Privilege Vulnerability |
| Windows TCP/IP | CVE-2026-40399 | Windows TCP/IP Elevation of Privilege Vulnerability |
| Windows TCP/IP | CVE-2026-40401 | Windows TCP/IP Denial of Service Vulnerability |
| Windows Hyper-V | CVE-2026-40402 | Windows Hyper-V Elevation of Privilege Vulnerability |
| Windows Win32K - GRFX | CVE-2026-40403 | Windows Win32K - GRFX Remote Code Execution Vulnerability |
| Windows TCP/IP | CVE-2026-40405 | Windows TCP/IP Denial of Service Vulnerability |
| Windows TCP/IP | CVE-2026-40406 | Windows TCP/IP Information Disclosure Vulnerability |
| Windows 공용 로그 파일 시스템 드라이버 | CVE-2026-40407 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| Windows 커널 모드 드라이버 | CVE-2026-40408 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability |
| Windows SMB 클라이언트 | CVE-2026-40410 | Windows SMB Client Elevation of Privilege Vulnerability |
| Windows TCP/IP | CVE-2026-40413 | Windows TCP/IP Denial of Service Vulnerability |
| Windows TCP/IP | CVE-2026-40414 | Windows TCP/IP Denial of Service Vulnerability |
| Windows TCP/IP | CVE-2026-40415 | Windows TCP/IP Remote Code Execution Vulnerability |
| Microsoft Edge(Chromium 기반) | CVE-2026-40416 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
| Dynamics Business Central | CVE-2026-40417 | Dynamics Business Central Elevation of Privilege Vulnerability |
| Microsoft Office 간편 실행 | CVE-2026-40418 | Microsoft Office Click-To-Run Elevation of Privilege Vulnerability |
| Microsoft Office | CVE-2026-40419 | Microsoft Office Elevation of Privilege Vulnerability |
| Microsoft Office 간편 실행 | CVE-2026-40420 | Microsoft Office Click-To-Run Elevation of Privilege Vulnerability |
| Microsoft Office Word | CVE-2026-40421 | Microsoft Office Word Information Disclosure Vulnerability |
| Windows 관리 센터 | CVE-2026-41086 | Windows Admin Center Elevation of Privilege Vulnerability |
| WinSock용 Windows 보조 기능 드라이버 | CVE-2026-41088 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
| Windows Netlogon | CVE-2026-41089 | Windows Netlogon Remote Code Execution Vulnerability |
| Microsoft Data Formulator | CVE-2026-41094 | Microsoft Data Formulator Remote Code Execution Vulnerability |
| Windows 예상 파일 시스템 | CVE-2026-41095 | Windows Projected File System Elevation of Privilege Vulnerability |
| Microsoft Windows DNS | CVE-2026-41096 | Microsoft Windows DNS Remote Code Execution Vulnerability |
| Windows 보안 부팅 | CVE-2026-41097 | Windows Secure Boot Security Feature Bypass Vulnerability |
| M365 Copilot | CVE-2026-41100 | M365 Copilot Information Disclosure Vulnerability |
| Microsoft Office Word | CVE-2026-41101 | Microsoft Office Word Remote Code Execution Vulnerability |
| Microsoft Office PowerPoint | CVE-2026-41102 | Microsoft Office PowerPoint Remote Code Execution Vulnerability |
| Jira 및 Confluence용 Microsoft SSO 플러그인 | CVE-2026-41103 | Microsoft SSO Plugin for Jira and Confluence Elevation of Privilege Vulnerability |
| Azure 알림 서비스 | CVE-2026-41105 | Azure Notification Service Elevation of Privilege Vulnerability |
| Microsoft Edge(Chromium 기반) | CVE-2026-41107 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
| GitHub Copilot 및 Visual Studio | CVE-2026-41109 | GitHub Copilot and Visual Studio Remote Code Execution Vulnerability |
| Visual Studio Code | CVE-2026-41610 | Visual Studio Code Information Disclosure Vulnerability |
| Visual Studio Code | CVE-2026-41611 | Visual Studio Code Remote Code Execution Vulnerability |
| Visual Studio Code | CVE-2026-41612 | Visual Studio Code Information Disclosure Vulnerability |
| Visual Studio Code | CVE-2026-41613 | Visual Studio Code Remote Code Execution Vulnerability |
| 데스크톱용 M365 Copilot | CVE-2026-41614 | M365 Copilot for Desktop Information Disclosure Vulnerability |
| Azure Logic Apps | CVE-2026-42823 | Azure Logic Apps Elevation of Privilege Vulnerability |
| Windows 전화 통신 서비스 | CVE-2026-42825 | Windows Telephony Service Elevation of Privilege Vulnerability |
| Azure DevOps | CVE-2026-42826 | Azure DevOps Elevation of Privilege Vulnerability |
| Azure Monitor 에이전트 | CVE-2026-42830 | Azure Monitor Agent Tampering Vulnerability |
| Android용 Office | CVE-2026-42831 | Microsoft Office for Android Remote Code Execution Vulnerability |
| Microsoft Office Excel | CVE-2026-42832 | Microsoft Office Excel Information Disclosure Vulnerability |
| Microsoft Dynamics 365(온-프레미스) | CVE-2026-42833 | Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability |
| Microsoft Edge(Chromium 기반) | CVE-2026-42838 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
| Microsoft Edge(Chromium 기반) | CVE-2026-42891 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability |
| M365 Copilot | CVE-2026-42893 | M365 Copilot Tampering Vulnerability |
| Windows DWM 핵심 라이브러리 | CVE-2026-42896 | Windows DWM Core Library Elevation of Privilege Vulnerability |
| Microsoft Dynamics 365(온-프레미스) | CVE-2026-42898 | Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability |
| ASP.NET | CVE-2026-42899 | ASP.NET Denial of Service Vulnerability |
| AMD CPU Branch | CVE-2025-54518 | AMD CPU OP Cache Corruption Vulnerability |
| Microsoft Edge(Chromium 기반) | CVE-2026-7896 | Integer overflow in Blink |
| Microsoft Edge(Chromium 기반) | CVE-2026-7897 | Use after free in Mobile |
| Microsoft Edge(Chromium 기반) | CVE-2026-7898 | Use after free in Chromoting |
| Microsoft Edge(Chromium 기반) | CVE-2026-7899 | Out of bounds read and write in V8 |
| Microsoft Edge(Chromium 기반) | CVE-2026-7900 | Heap buffer overflow in ANGLE |
| Microsoft Edge(Chromium 기반) | CVE-2026-7901 | Use after free in ANGLE |
| Microsoft Edge(Chromium 기반) | CVE-2026-7902 | Out of bounds memory access in V8 |
| Microsoft Edge(Chromium 기반) | CVE-2026-7903 | Integer overflow in ANGLE |
| Microsoft Edge(Chromium 기반) | CVE-2026-7904 | Out of bounds read in Fonts |
| Microsoft Edge(Chromium 기반) | CVE-2026-7905 | Insufficient validation of untrusted input in Media |
| Microsoft Edge(Chromium 기반) | CVE-2026-7906 | Use after free in SVG |
| Microsoft Edge(Chromium 기반) | CVE-2026-7907 | Use after free in DOM |
| Microsoft Edge(Chromium 기반) | CVE-2026-7908 | Use after free in Fullscreen |
| Microsoft Edge(Chromium 기반) | CVE-2026-7909 | Inappropriate implementation in ServiceWorker |
| Microsoft Edge(Chromium 기반) | CVE-2026-7910 | Use after free in Views |
| Microsoft Edge(Chromium 기반) | CVE-2026-7911 | Use after free in Aura |
| Microsoft Edge(Chromium 기반) | CVE-2026-7912 | Integer overflow in GPU |
| Microsoft Edge(Chromium 기반) | CVE-2026-7913 | Insufficient policy enforcement in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-7914 | Type Confusion in Accessibility |
| Microsoft Edge(Chromium 기반) | CVE-2026-7915 | Insufficient data validation in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-7916 | Insufficient data validation in InterestGroups |
| Microsoft Edge(Chromium 기반) | CVE-2026-7917 | Use after free in Fullscreen |
| Microsoft Edge(Chromium 기반) | CVE-2026-7918 | Use after free in GPU |
| Microsoft Edge(Chromium 기반) | CVE-2026-7919 | Use after free in Aura |
| Microsoft Edge(Chromium 기반) | CVE-2026-7920 | Use after free in Skia |
| Microsoft Edge(Chromium 기반) | CVE-2026-7921 | Use after free in Passwords |
| Microsoft Edge(Chromium 기반) | CVE-2026-7922 | Use after free in ServiceWorker |
| Microsoft Edge(Chromium 기반) | CVE-2026-7923 | Out of bounds write in Skia |
| Microsoft Edge(Chromium 기반) | CVE-2026-7924 | Uninitialized Use in Dawn |
| Microsoft Edge(Chromium 기반) | CVE-2026-7925 | Use after free in Chromoting |
| Microsoft Edge(Chromium 기반) | CVE-2026-7926 | Use after free in PresentationAPI |
| Microsoft Edge(Chromium 기반) | CVE-2026-7927 | Type Confusion in Runtime |
| Microsoft Edge(Chromium 기반) | CVE-2026-7928 | Use after free in WebRTC |
| Microsoft Edge(Chromium 기반) | CVE-2026-7929 | Use after free in MediaRecording |
| Microsoft Edge(Chromium 기반) | CVE-2026-7930 | Insufficient validation of untrusted input in Cookies |
| Microsoft Edge(Chromium 기반) | CVE-2026-7931 | Insufficient validation of untrusted input in iOS |
| Microsoft Edge(Chromium 기반) | CVE-2026-7932 | Insufficient policy enforcement in Downloads |
| Microsoft Edge(Chromium 기반) | CVE-2026-7933 | Out of bounds read in WebCodecs |
| Microsoft Edge(Chromium 기반) | CVE-2026-7934 | Insufficient validation of untrusted input in Popup Blocker |
| Microsoft Edge(Chromium 기반) | CVE-2026-7935 | Inappropriate implementation in Speech |
| Microsoft Edge(Chromium 기반) | CVE-2026-7936 | Object lifecycle issue in V8 |
| Microsoft Edge(Chromium 기반) | CVE-2026-7937 | Insufficient policy enforcement in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-7938 | Use after free in CSS |
| Microsoft Edge(Chromium 기반) | CVE-2026-7939 | Inappropriate implementation in SanitizerAPI |
| Microsoft Edge(Chromium 기반) | CVE-2026-7940 | Use after free in V8 |
| Microsoft Edge(Chromium 기반) | CVE-2026-7941 | Insufficient validation of untrusted input in Mobile |
| Microsoft Edge(Chromium 기반) | CVE-2026-7942 | Integer overflow in ANGLE |
| Microsoft Edge(Chromium 기반) | CVE-2026-7943 | Insufficient validation of untrusted input in ANGLE |
| Microsoft Edge(Chromium 기반) | CVE-2026-7944 | Insufficient validation of untrusted input in Persistent Cache |
| Microsoft Edge(Chromium 기반) | CVE-2026-7945 | Insufficient validation of untrusted input in COOP |
| Microsoft Edge(Chromium 기반) | CVE-2026-7946 | Insufficient policy enforcement in WebUI |
| Microsoft Edge(Chromium 기반) | CVE-2026-7947 | Insufficient validation of untrusted input in Network |
| Microsoft Edge(Chromium 기반) | CVE-2026-7948 | Race in Chromoting |
| Microsoft Edge(Chromium 기반) | CVE-2026-7949 | Out of bounds read in Skia |
| Microsoft Edge(Chromium 기반) | CVE-2026-7950 | Out of bounds read and write in GFX |
| Microsoft Edge(Chromium 기반) | CVE-2026-7951 | Out of bounds write in WebRTC |
| Microsoft Edge(Chromium 기반) | CVE-2026-7952 | Insufficient policy enforcement in Extensions |
| Microsoft Edge(Chromium 기반) | CVE-2026-7953 | Insufficient validation of untrusted input in Omnibox |
| Microsoft Edge(Chromium 기반) | CVE-2026-7954 | Race in Shared Storage |
| Microsoft Edge(Chromium 기반) | CVE-2026-7955 | Uninitialized Use in GPU |
| Microsoft Edge(Chromium 기반) | CVE-2026-7956 | Use after free in Navigation |
| Microsoft Edge(Chromium 기반) | CVE-2026-7957 | Out of bounds write in Media |
| Microsoft Edge(Chromium 기반) | CVE-2026-7958 | Inappropriate implementation in ServiceWorker |
| Microsoft Edge(Chromium 기반) | CVE-2026-7959 | Inappropriate implementation in Navigation |
| Microsoft Edge(Chromium 기반) | CVE-2026-7960 | Race in Speech |
| Microsoft Edge(Chromium 기반) | CVE-2026-7961 | Insufficient validation of untrusted input in Permissions |
| Microsoft Edge(Chromium 기반) | CVE-2026-7962 | Insufficient policy enforcement in DirectSockets |
| Microsoft Edge(Chromium 기반) | CVE-2026-7963 | Inappropriate implementation in ServiceWorker |
| Microsoft Edge(Chromium 기반) | CVE-2026-7964 | Insufficient validation of untrusted input in FileSystem |
| Microsoft Edge(Chromium 기반) | CVE-2026-7965 | Insufficient validation of untrusted input in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-7966 | Insufficient validation of untrusted input in SiteIsolation |
| Microsoft Edge(Chromium 기반) | CVE-2026-7967 | Insufficient validation of untrusted input in Navigation |
| Microsoft Edge(Chromium 기반) | CVE-2026-7968 | Insufficient validation of untrusted input in CORS |
| Microsoft Edge(Chromium 기반) | CVE-2026-7969 | Integer overflow in Network |
| Microsoft Edge(Chromium 기반) | CVE-2026-7970 | Use after free in TopChrome |
| Microsoft Edge(Chromium 기반) | CVE-2026-7971 | Inappropriate implementation in ORB |
| Microsoft Edge(Chromium 기반) | CVE-2026-7972 | Uninitialized Use in GPU |
| Microsoft Edge(Chromium 기반) | CVE-2026-7973 | Integer overflow in Dawn |
| Microsoft Edge(Chromium 기반) | CVE-2026-7974 | Use after free in Blink |
| Microsoft Edge(Chromium 기반) | CVE-2026-7975 | Use after free in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-7976 | Use after free in Views |
| Microsoft Edge(Chromium 기반) | CVE-2026-7977 | Inappropriate implementation in Canvas |
| Microsoft Edge(Chromium 기반) | CVE-2026-7978 | Inappropriate implementation in Companion |
| Microsoft Edge(Chromium 기반) | CVE-2026-7979 | Inappropriate implementation in Media |
| Microsoft Edge(Chromium 기반) | CVE-2026-7980 | Use after free in WebAudio |
| Microsoft Edge(Chromium 기반) | CVE-2026-7981 | Out of bounds read in Codecs |
| Microsoft Edge(Chromium 기반) | CVE-2026-7982 | Uninitialized Use in WebCodecs |
| Microsoft Edge(Chromium 기반) | CVE-2026-7983 | Out of bounds read in Dawn |
| Microsoft Edge(Chromium 기반) | CVE-2026-7984 | Use after free in ReadingMode |
| Microsoft Edge(Chromium 기반) | CVE-2026-7985 | Use after free in GPU |
| Microsoft Edge(Chromium 기반) | CVE-2026-7986 | Insufficient policy enforcement in Autofill |
| Microsoft Edge(Chromium 기반) | CVE-2026-7987 | Use after free in WebRTC |
| Microsoft Edge(Chromium 기반) | CVE-2026-7988 | Type Confusion in WebRTC |
| Microsoft Edge(Chromium 기반) | CVE-2026-7989 | Insufficient data validation in DataTransfer |
| Microsoft Edge(Chromium 기반) | CVE-2026-7990 | Insufficient validation of untrusted input in Updater |
| Microsoft Edge(Chromium 기반) | CVE-2026-7991 | Use after free in UI |
| Microsoft Edge(Chromium 기반) | CVE-2026-7992 | Insufficient validation of untrusted input in UI |
| Microsoft Edge(Chromium 기반) | CVE-2026-7993 | Insufficient validation of untrusted input in Payments |
| Microsoft Edge(Chromium 기반) | CVE-2026-7994 | Inappropriate implementation in Chromoting |
| Microsoft Edge(Chromium 기반) | CVE-2026-7995 | Out of bounds read in AdFilter |
| Microsoft Edge(Chromium 기반) | CVE-2026-7996 | Insufficient validation of untrusted input in SSL |
| Microsoft Edge(Chromium 기반) | CVE-2026-7997 | Insufficient validation of untrusted input in Updater |
| Microsoft Edge(Chromium 기반) | CVE-2026-7998 | Insufficient validation of untrusted input in Dialog |
| Microsoft Edge(Chromium 기반) | CVE-2026-7999 | Inappropriate implementation in V8 |
| Microsoft Edge(Chromium 기반) | CVE-2026-8000 | Insufficient validation of untrusted input in ChromeDriver |
| Microsoft Edge(Chromium 기반) | CVE-2026-8001 | Use after free in Printing |
| Microsoft Edge(Chromium 기반) | CVE-2026-8002 | Use after free in Audio |
| Microsoft Edge(Chromium 기반) | CVE-2026-8003 | Insufficient validation of untrusted input in TabGroups |
| Microsoft Edge(Chromium 기반) | CVE-2026-8004 | Insufficient policy enforcement in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-8005 | Insufficient validation of untrusted input in Cast |
| Microsoft Edge(Chromium 기반) | CVE-2026-8006 | Insufficient policy enforcement in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-8007 | Insufficient validation of untrusted input in Cast |
| Microsoft Edge(Chromium 기반) | CVE-2026-8008 | Inappropriate implementation in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-8009 | Inappropriate implementation in Cast |
| Microsoft Edge(Chromium 기반) | CVE-2026-8010 | Insufficient validation of untrusted input in SiteIsolation |
| Microsoft Edge(Chromium 기반) | CVE-2026-8011 | Insufficient policy enforcement in Search |
| Microsoft Edge(Chromium 기반) | CVE-2026-8012 | Inappropriate implementation in MHTML |
| Microsoft Edge(Chromium 기반) | CVE-2026-8013 | Insufficient validation of untrusted input in FedCM |
| Microsoft Edge(Chromium 기반) | CVE-2026-8014 | Inappropriate implementation in Preload |
| Microsoft Edge(Chromium 기반) | CVE-2026-8015 | Inappropriate implementation in Media |
| Microsoft Edge(Chromium 기반) | CVE-2026-8016 | Use after free in WebRTC |
| Microsoft Edge(Chromium 기반) | CVE-2026-8017 | Side-channel information leakage in Media |
| Microsoft Edge(Chromium 기반) | CVE-2026-8018 | Insufficient policy enforcement in DevTools |
| Microsoft Edge(Chromium 기반) | CVE-2026-8019 | Insufficient policy enforcement in WebApp |
| Microsoft Edge(Chromium 기반) | CVE-2026-8020 | Uninitialized Use in GPU |
| Microsoft Edge(Chromium 기반) | CVE-2026-8021 | Script injection in UI |
| Microsoft Edge(Chromium 기반) | CVE-2026-8022 | Inappropriate implementation in MHTML |
□ 작성 : 위협대응단 AI취약점대응팀
문의하기