CNNVD-202602-1499 Information
CNNVD ID
CNNVD-202602-1499
Related CVE
- CNNVD Published: 2026-02-10
Description (Chinese)
Microsoft MSHTML Framework是美国微软(Microsoft)公司的一个用于解析和呈现HTML文档的软件框架。 Microsoft MSHTML Framework存在安全漏洞。攻击者利用该漏洞可以绕过某些功能。以下产品和版本受到影响:Windows Server 2016 (Server Core installation),Windows 10 Version 1607 for x64-based Systems,Windows Server 2012,Windows 10 Version 1809 for x64-based Systems,Windows Server 2012 R2,Windows Server 2012 (Server Core installation),Windows Server 2012 R2 (Server Core installation),Windows 11 Version 26H1 for ARM64-based Systems,Windows 11 version 26H1 for x64-based Systems,Windows 10 Version 1809 for 32-bit Systems,Windows Server 2022,Windows Server 2022 (Server Core installation),Windows Server 2019,Windows Server 2019 (Server Core installation),Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 10 Version 22H2 for 32-bit Systems,Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025,Windows Server 2016,Windows 10 Version 1607 for 32-bit Systems。
Description (English)
Microsoft MSHTML Framework is a software framework for the United States of America ’ s Microsoft (MSS) company to interpret and present HTML files. There is a security gap in Microsoft MSHTML Framework. The attackers used that loophole to circumvent certain functions. The following products and versions have been affected: Wows Silver 2016, Wowsow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow, Aow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow-ow, Aow-ow-ow-ow-ow-and-ow-ow-ow-ow-ow-ow-and-ow,
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
微软
Published
2026-02-10
Last Modified
2026-02-24
References
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-21513 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21513
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21513
Share on: