microsoft 厂商相关 8650 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。
Microsoft 主要提供操作系统、办公软件及云计算服务。其软件历史上常出现远程代码执行、权限提升及跨站脚本等漏洞,多源于内存处理缺陷或配置错误。值得关注的是,微软推行“安全开发生命周期”并实施零信任架构,近期因 Exchange Server 漏洞引发的全球性供应链攻击事件,凸显了企业级应用的安全风险,促使业界加强补丁管理与纵深防御体系建设。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2023-36005 | Microsoft Windows Telephony Server 安全漏洞 — Windows 10 Version 1809CWE-591 | 7.5 | High | 2023-12-12 |
| CVE-2023-36003 | Microsoft XAML Diagnostics 安全漏洞 — Windows 10 Version 1809CWE-426 | 6.7 | Medium | 2023-12-12 |
| CVE-2023-36012 | Microsoft Windows DHCP Server 安全漏洞 — Windows Server 2019CWE-908 | 5.3 | Medium | 2023-12-12 |
| CVE-2023-36010 | Microsoft Defender 安全漏洞 — Microsoft Malware Protection Platform | 7.5 | High | 2023-12-12 |
| CVE-2023-36019 | Microsoft Power Platform Connector 安全漏洞 — Microsoft Power PlatformCWE-73 | 9.6 | Critical | 2023-12-12 |
| CVE-2023-21740 | Microsoft Windows Media Foundation 安全漏洞 — Windows 10 Version 1809CWE-122 | 7.8 | High | 2023-12-12 |
| CVE-2023-35625 | Microsoft Azure Machine Learning 安全漏洞 — Azure Machine LearningCWE-200 | 4.7 | Medium | 2023-12-12 |
| CVE-2023-36009 | Microsoft Word 安全漏洞 — Microsoft Office 2019 | 5.5 | Medium | 2023-12-12 |
| CVE-2023-36011 | Microsoft Win32K 安全漏洞 — Windows 10 Version 1809CWE-822 | 7.8 | High | 2023-12-12 |
| CVE-2023-36020 | Microsoft Dynamics 365 安全漏洞 — Microsoft Dynamics 365 (on-premises) version 9.1CWE-79 | 7.6 | High | 2023-12-12 |
| CVE-2023-36391 | Microsoft Windows Local Security Authority Subsystem Service 安全漏洞 — Windows 11 version 22H3CWE-59 | 7.8 | High | 2023-12-12 |
| CVE-2023-36696 | Microsoft Windows Cloud Files Mini Filter Driver 安全漏洞 — Windows 10 Version 1809CWE-125 | 7.8 | High | 2023-12-12 |
| CVE-2023-36880 | Microsoft Edge 安全漏洞 — Microsoft Edge (Chromium-based) | 4.8 | Medium | 2023-12-07 |
| CVE-2023-35618 | Microsoft Edge 安全漏洞 — Microsoft Edge (Chromium-based)CWE-416 | 9.6 | Critical | 2023-12-07 |
| CVE-2023-38174 | Microsoft Edge 安全漏洞 — Microsoft Edge (Chromium-based) | 4.3 | Medium | 2023-12-07 |
| CVE-2023-36013 | Microsoft Windows PowerShell 安全漏洞 — PowerShell 7.2CWE-798 | 6.5 | Medium | 2023-11-20 |
| CVE-2023-36008 | Microsoft Edge 安全漏洞 — Microsoft Edge (Chromium-based)CWE-416 | 6.6 | Medium | 2023-11-16 |
| CVE-2023-36026 | Microsoft Edge 安全漏洞 — Microsoft Edge (Chromium-based) | 4.3 | Medium | 2023-11-16 |
| CVE-2023-36038 | Microsoft ASP.NET Core 安全漏洞 — ASP.NET Core 8.0CWE-400 | 8.2 | High | 2023-11-14 |
| CVE-2023-36558 | Microsoft ASP.NET Core 安全漏洞 — .NET 6.0 | 6.2 | Medium | 2023-11-14 |
| CVE-2023-36049 | Microsoft .NET Framework 安全漏洞 — Microsoft Visual Studio 2022 version 17.2CWE-20 | 7.6 | High | 2023-11-14 |
| CVE-2023-36007 | Microsoft Dynamics 365 安全漏洞 — Send Customer Voice survey from Dynamics 365 appCWE-79 | 7.6 | High | 2023-11-14 |
| CVE-2023-36437 | Microsoft Azure DevOps Server 安全漏洞 — Azure Pipelines AgentCWE-94 | 8.8 | High | 2023-11-14 |
| CVE-2023-36016 | Microsoft Dynamics 365 安全漏洞 — Microsoft Dynamics 365 (on-premises) version 9.0CWE-79 | 6.2 | Medium | 2023-11-14 |
| CVE-2023-36018 | Microsoft Visual Studio Code 安全漏洞 — Jupyter Extension for Visual Studio CodeCWE-359 | 7.8 | High | 2023-11-14 |
| CVE-2023-36025 | Microsoft Windows SmartScreen 安全漏洞 — Windows 10 Version 1809 | 8.8 | High | 2023-11-14 |
| CVE-2023-36021 | Microsoft Azure 安全漏洞 — On-Prem Data GatewayCWE-20 | 8.0 | High | 2023-11-14 |
| CVE-2023-36031 | Microsoft Dynamics 365 安全漏洞 — Microsoft Dynamics 365 (on-premises) version 9.1CWE-79 | 7.6 | High | 2023-11-14 |
| CVE-2023-36033 | Microsoft DWM Core Library 安全漏洞 — Windows 10 Version 1809CWE-822 | 7.8 | High | 2023-11-14 |
| CVE-2023-36030 | Microsoft Dynamics 365 安全漏洞 — Microsoft Dynamics 365 (on-premises) version 9.1CWE-79 | 6.1 | Medium | 2023-11-14 |
本页汇总了 microsoft 厂商截至目前公开的全部 8650 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。