CNNVD-202601-2077 Information
CNNVD ID
CNNVD-202601-2077
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
Microsoft Windows Error Reporting(WER)是美国微软(Microsoft)公司的一个组件。使用户能够将应用程序故障、内核故障、无响应的应用程序和其他应用程序特定问题通知 Microsoft。 Microsoft Windows Error Reporting(WER)存在安全漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025。
Description (English)
Microsoft Windows Error Reporting (WER) is a component of Microsoft USA. Enables users to notify Microsoft of application failure, kernel failure, unresponsive applications and other application-specific issues. Microsoft Windows Error Reporting (WER) has a security gap. The attackers use this loophole to enhance their authority. The following products and versions are affected: Windows Servers 2022, Windows Servers 2022, Windows 10 Veresion 21H2 for 32-bit Systems, Windows 10 Version 21H2 for ARM 64-based Systems, Windows 10 Vers 21H2 for 64-year Systems, Windows Servers 2025, Windows 22H2 for Server Systems, Windows 2 for Windows 23-years, Windows 20H2 for Windows 22Systems, Windows 22H2 for Views 20-year Systems, Windows 10 years 22-years 22-years 25-years 22H2-years2
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
微软
Published
2026-01-13
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20817
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20817
Share on: