CNNVD-202602-1545 Information
CNNVD ID
CNNVD-202602-1545
Related CVE
- CNNVD Published: 2026-02-10
Description (Chinese)
Microsoft HTTP.sys是美国微软(Microsoft)公司的一个HTTP应用协议。 Microsoft HTTP.sys存在安全漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation),Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025,Windows 11 Version 26H1 for ARM64-based Systems,Windows 11 version 26H1 for x64-based Systems。
Description (English)
Microsoft HTTP.sys is an HTTP application agreement for Microsoft (MSC) in the United States. Microsoft HTTP.sys has a security gap. The attackers use this loophole to enhance their authority. The following products and versions have been affected: Windows Server 2025 (Server Corporation), Windows 11 Version 25H2 for ARM 64-based Systems, Windows 11 Version 25H2 for x64-based Systems, Windows Server 2022, 23H2 Evaluation (Server Corporation), Windows 11 Version 24H2 for ARM 64-basted Systems, Windows 24H2 for ARRM 64-bastems, Windows 24H2 for x64-based Systems, Windows Server 2025, Windows 11.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
微软
Published
2026-02-10
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21250
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21250
Share on: