Microsoft 厂商相关 8713 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。
Microsoft 主要提供操作系统、办公软件及云计算服务。其软件历史上常出现远程代码执行、权限提升及跨站脚本等漏洞,多源于内存处理缺陷或配置错误。值得关注的是,微软推行“安全开发生命周期”并实施零信任架构,近期因 Exchange Server 漏洞引发的全球性供应链攻击事件,凸显了企业级应用的安全风险,促使业界加强补丁管理与纵深防御体系建设。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2021-31941 | Microsoft Office 代码注入漏洞 — Microsoft Office 2019 | 7.8 | High | 2021-06-08 |
| CVE-2021-31939 | Microsoft Office Excel 代码注入漏洞 — Office Online Server | 7.8 | High | 2021-06-08 |
| CVE-2021-31940 | Microsoft Office 代码注入漏洞 — Microsoft Office 2019 | 7.8 | High | 2021-06-08 |
| CVE-2021-31938 | Visual Studio Code 权限许可和访问控制问题漏洞 — Visual Studio Code - Kubernetes Tools | 7.3 | High | 2021-06-08 |
| CVE-2021-31199 | Windows Cryptographic Services 权限许可和访问控制问题漏洞 — Windows 10 Version 1809 | 5.2 | Medium | 2021-06-08 |
| CVE-2021-31201 | Microsoft Windows Cryptographic Services 权限许可和访问控制问题漏洞 — Windows 10 Version 1809 | 5.2 | Medium | 2021-06-08 |
| CVE-2021-26420 | Microsoft Office SharePoint 代码注入漏洞 — Microsoft SharePoint Enterprise Server 2016 | 7.1 | High | 2021-06-08 |
| CVE-2021-1675 | Microsoft Windows Print Spooler Components 安全漏洞 — Windows 10 Version 1809 | 7.8 | High | 2021-06-08 |
| CVE-2021-26414 | Windows DCOM Server 安全特征问题漏洞 — Windows 10 Version 1809 | 4.8 | Medium | 2021-06-08 |
| CVE-2021-31214 | Microsoft Visual Studio Code 命令注入漏洞 — Visual Studio Code | 7.8 | High | 2021-05-11 |
| CVE-2021-31936 | Microsoft Accessibility Insights for Web 信息泄露漏洞 — Microsoft Accessibility Insights for Web | 7.4 | High | 2021-05-11 |
| CVE-2021-31213 | Microsoft Visual Studio Code 代码注入漏洞 — Visual Studio Code Remote - Containers Extension | 7.8 | High | 2021-05-11 |
| CVE-2021-31209 | Microsoft Exchange Server 安全漏洞 — Microsoft Exchange Server 2019 Cumulative Update 9 | 6.5 | Medium | 2021-05-11 |
| CVE-2021-31211 | Microsoft Visual Studio Code 代码注入漏洞 — Visual Studio Code | 7.8 | High | 2021-05-11 |
| CVE-2021-31208 | Microsoft Windows Container Manager Service 权限许可和访问控制问题漏洞 — Windows 10 Version 2004 | 7.8 | High | 2021-05-11 |
| CVE-2021-31207 | Microsoft Exchange Server 代码问题漏洞 — Microsoft Exchange Server 2013 Cumulative Update 23 | 6.6 | Medium | 2021-05-11 |
| CVE-2021-31204 | Microsoft Visual Studio 权限许可和访问控制问题漏洞 — .NET Core 3.1 | 7.3 | High | 2021-05-11 |
| CVE-2021-31205 | Microsoft Windows SMB Client 安全特征问题漏洞 — Windows 10 Version 2004 | 6.5 | Medium | 2021-05-11 |
| CVE-2021-31198 | Microsoft Exchange Server 输入验证错误漏洞 — Microsoft Exchange Server 2019 Cumulative Update 9 | 7.8 | High | 2021-05-11 |
| CVE-2021-31200 | Microsoft Common Utilities 代码注入漏洞 — common_utils.py | 7.2 | High | 2021-05-11 |
| CVE-2021-31195 | Microsoft Exchange Server 代码注入漏洞 — Microsoft Exchange Server 2016 Cumulative Update 19 | 6.5 | Medium | 2021-05-11 |
| CVE-2021-31194 | Microsoft OLE Automation Remote code 代码注入漏洞 — Windows 10 Version 1803 | 8.8 | High | 2021-05-11 |
| CVE-2021-31192 | Microsoft Windows Codecs 代码注入漏洞 — Windows 10 Version 2004 | 7.8 | High | 2021-05-11 |
| CVE-2021-31193 | Microsoft Windows SSDP Service 权限许可和访问控制问题漏洞 — Windows 10 Version 1803 | 7.8 | High | 2021-05-11 |
| CVE-2021-31191 | Microsoft Projected File System 信息泄露漏洞 — Windows 10 Version 1803 | 5.5 | Medium | 2021-05-11 |
| CVE-2021-31188 | Microsoft Graphics Component 资源管理错误漏洞 — Windows 10 Version 1803 | 7.8 | High | 2021-05-11 |
| CVE-2021-31190 | Microsoft Windows Container Isolation FS Filter Driver 权限许可和访问控制问题漏洞 — Windows 10 Version 1809 | 7.8 | High | 2021-05-11 |
| CVE-2021-31187 | Microsoft Windows WalletService 后置链接漏洞 — Windows 10 Version 1803 | 7.8 | High | 2021-05-11 |
| CVE-2021-31185 | Microsoft Windows Desktop Bridge 输入验证错误漏洞 — Windows 10 Version 2004 | 5.5 | Medium | 2021-05-11 |
| CVE-2021-31186 | Microsoft Remote Desktop Protocol Client 信息泄露漏洞 — Windows 10 Version 1803 | 7.4 | High | 2021-05-11 |
本页汇总了 Microsoft 厂商截至目前公开的全部 8713 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。