CNNVD-202601-2039 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2039

CVE-2026-20804

  • CNNVD Published: 2026-01-13

Description (Chinese)

Microsoft Windows Hello是美国微软(Microsoft)公司的一种基于生物识别的登录方式,可以使用您的面部、指纹或 PIN 进行登录。 Microsoft Windows Hello存在安全漏洞。攻击者利用该漏洞可以篡改信息。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems,Windows Server 2016,Windows Server 2016 (Server Core installation)。

Description (English)

Microsoft Windows Hello is a biometric-based login that can be accessed using your face, fingerprints or PIN. Microsoft Windows Hello has a security breach. The attackers use that loophole to tamper with information. The following products and editions are affected: Wowows, Wows, Wows, Wows, Vows, Vows, Vows, Wows, Vows, Vows, Vows, Vows, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, V2s, B2s, V2s, V2s, ands2s,

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

微软

Published

2026-01-13

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20804

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20804

Share on: