CNNVD-202601-2128 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2128

CVE-2026-20835

  • CNNVD Published: 2026-01-13

Description (Chinese)

Microsoft Windows是美国微软(Microsoft)公司的一套个人设备使用的操作系统。 Microsoft Windows存在缓冲区错误漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025。

Description (English)

Microsoft Windows is an operating system used by Microsoft (MS) in the United States of America for personal equipment. Microsoft Windows has an error hole in the buffer zone. The attackers use this loophole to enhance their authority. The following products and versions have been affected: Windows Server 2025 (Server Corporation), Windows 11 Version 25H2 for ARM 64-based Systems, Windows 11 Version 25H2 for x64-based Systems, Windows Server 2022, 23H2 Evaluation (Server Core Integration), Windows 11 Version 24H2 for ARM 64-based Systems, Windows 11 Version 24H2 for x 64-based Systems, Windows Server 2025.

Hazard Level

High

Vulnerability Type

缓冲区错误

Affected Vendor

微软

Published

2026-01-13

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20835

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20835

Share on: