2026-07微软漏洞通告
-
作者:火绒安全
-
发布时间:2026-07-15
-
阅读量:898
微软官方发布了2026年7月的安全更新。本月更新公布了622个漏洞,包含256个特权提升漏洞、165个远程执行代码漏洞、108个信息泄露漏洞、35个拒绝服务漏洞、29个身份假冒漏洞、安全功能绕过漏洞21个、篡改漏洞8个,其中62个漏洞级别为“Critical”(高危),553个为“Important”(严重)。建议用户及时使用火绒安全软件(个人/企业)【漏洞修复】功能更新补丁。
请注意,本次7月累积更新补丁存在设备兼容性问题:Windows 11 24H2、25H2系统下的戴尔(DELL)设备安装该补丁后,可能出现意外关机、整机发热加剧、性能下降、电池耗电过快、设备管理器驱动异常报错等故障。防止受影响型号遭遇此问题,微软计划在未来几天内发布相关解决方案。
相关公告:
https://support.microsoft.com/zh-cn/topic/5101650
涉及组件
.NET
.NET Framework
Active Directory
ASP.NET Core
Azure Active Directory
Azure CycleCloud
Azure Monitor Agent Metrics Extension
Azure OpenAI
Azure Spring Apps
Clipboard User Service
Code Integrity DLL (ci.dll)
Composite Image File System driver (cimfs.sys)
Configuration Manager
Content Delivery Manager
Desktop Window Manager
DHCP Server Service
DirectX Graphics Kernel
DNS Client
Extensible Storage Engine (ESENT)
Game: Age of Empires II: Definitive Edition
GitHub Copilot
GitHub Copilot and Visual Studio Code
HTTP.sys
HTTP/2
Internet Key Exchange (IKE) Protocol
M365 Copilot for iOS
Microsoft 365 Copilot
Microsoft Azure Synapse
Microsoft Bing App for IOS
Microsoft Brokering File System
Microsoft Copilot
Microsoft Defender
Microsoft Defender for Endpoint for Mac
Microsoft DWM Core Library
Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises)
Microsoft Edge (Chromium-based)
Microsoft Edge for Android
Microsoft Entra Provisioning Service
Microsoft Excel
Microsoft Exchange Online
Microsoft Exchange Server
Microsoft Fabric Data Warehouse
Microsoft Install Service
Microsoft Message Queuing Queue Manager
Microsoft NAT Helper Components (ipnathlp.dll)
Microsoft Office
Microsoft OneNote
Microsoft PC Manager
Microsoft PowerBI Report Server
Microsoft PowerPoint
Microsoft SharePoint
Microsoft SharePoint Server
Microsoft SQL Server
Microsoft Windows App Store
Microsoft Windows Media Foundation
Microsoft Windows VMSwitch
Microsoft Word
Microsoft XML
Microsoft XML Core Services
Minecraft Bedrock Dedicated Server
Netlogon RPC
NTFS
OData for ASP.NET and ASP.NET Core
Outlook Copilot
Quality Windows Audio/Video Experience (QWAVE)
Remote Access Management service/API (RPC server)
Remote Desktop Client
Remote Desktop Protocol
Secure Boot
SQL Server ODBC driver
Storage Spaces Direct
Surface Broker SDMA
Universal Plug and Play (upnp.dll)
Universal Print Management Service
Virtual Hard Disk (VHD) Miniport Driver
Visual Studio
Visual Studio Code
Win32k
Window Virtual Filtering Platform (VFP)
Windows Active Directory
Windows Active Directory Domain Services
Windows Active Directory Federation Services
Windows Active Directory Federation Services (ADFS)
Windows Admin Center
Windows Admin Center (WAC)
Windows Ancillary Function Driver for WinSock
Windows App Package Installer
Windows Application Model Core API
Windows AppX Deployment Extensions
Windows Audio Compression Manager (ACM)
Windows Audio Service
Windows Backup Engine
Windows Backup Service
Windows BitLocker
Windows Bluetooth Port Driver
Windows Bluetooth Service
Windows Boot Loader
Windows Client-Side Caching
Windows Clip Service
Windows Clipboard Server
Windows Cloud Files Mini Filter Driver
Windows Common Log File System Driver
Windows Connected User Experiences and Telemetry
Windows Container Isolation FS Filter Driver (unionfs.sys)
Windows Cryptographic Services
Windows Cryptography API: Next Generation (CNG)
Windows Data.dll
Windows DHCP Client
Windows DHCP Server
Windows DirectX
Windows DNS Client
Windows DNS Server
Windows Domain Controller
Windows DWM Core Library
Windows Event Logging Service
Windows File Explorer
Windows File History Service
Windows Filtering Platform
Windows FTP Service
Windows GDI
Windows GDI+
Windows Graphics Component
Windows Group Policy
Windows Human Interface Device
Windows Hyper-V
Windows Image Acquisition
Windows Input Method Editor (IME)
Windows Installer
Windows Internal System User Profile
Windows Internal Task Bar
Windows Kernel
Windows Kernel-Mode Driver
Windows Key Guard
Windows Local Security Authority Subsystem Service (LSASS)
Windows LUA File Virtualization Filter Driver
Windows Management Services
Windows Media
Windows Media Photo Codec
Windows Message Queuing (MSMQ)
Windows Message Queuing Service (MSMQ)
Windows MIDI Service Module
Windows Narrator Braille
Windows Netlogon
Windows Network Address Translation (NAT)
Windows Network Connections Service
Windows Network File System
Windows Network Policy Server SNMP
Windows NFS Server
Windows Notification
Windows NTFS
Windows OLE
Windows Operating Systems
Windows Overlay Filter
Windows PowerShell
Windows Print Configuration
Windows Print Spooler
Windows Projected File System
Windows Push Notification
Windows Quality of Service (QoS) Packet Scheduler
Windows Redirected Drive Buffering System
Windows Reliable Multicast Transport Driver (RMCAST)
Windows Remote Access
Windows Remote Access Service Infrastructure
Windows Remote Desktop Client
Windows Remote Desktop Protocol (RDP)
Windows Remote Desktop Services
Windows Remote Help Defense
Windows Resilient File System (ReFS)
Windows Routing and Remote Access Service (RRAS)
Windows Runtime
Windows Search Service
Windows Secure Channel
Windows Secure Kernel Mode
Windows Secure Socket Tunneling Protocol (SSTP)
Windows Sensor Data Service
Windows Server
Windows Server Network driver
Windows Server Update Service (WSUS)
Windows SMB
Windows Spaceport.sys
Windows Speech Runtime
Windows StateRepository API Server file
Windows Storage
Windows Storage Spaces Direct
Windows Subsystem for Linux (WSL2) Kernel
Windows System
Windows TCP/IP
Windows Telephony Server
Windows Terminal
Windows Trusted Runtime Interface Driver
Windows Unified Consent System
Windows Universal Disk Format File System Driver (UDFS)
Windows Universal Plug and Play (UPnP) Device Host
Windows USB Audio Class Driver
Windows USB Driver
Windows USB Hub Driver
Windows USB Print Driver
Windows USB Video Driver
Windows User Interface Core
Windows WalletService
Windows Web Proxy Auto-Discovery Protocol (WPAD)
Windows WebView
Windows Win32 Kernel Subsystem
Windows Win32k
Windows Wireless Network Manager
Windows Zero Trust DNS
Wireless Wide Area Network Service (WwanSvc)
以下漏洞需特别注意
Windows VMSwitch 权限提升漏洞
CVE-2026-57092
严重级别:严重 CVSS:9.9
被利用级别:有可能被利用
此漏洞无需用户交互。该漏洞源于 Windows VMSwitch 在处理来宾虚拟机发送的特制网络请求时存在内存释放后重新使用缺陷,导致宿主系统访问已释放的内存并发生内存损坏,进而破坏虚拟机隔离边界,使来宾虚拟机中的代码能够影响宿主系统。攻击者需具备来宾虚拟机内的低权限并能够运行代码,目标系统需启用 Hyper-V 虚拟交换机。成功利用后,攻击者可能在宿主系统上获得提升的权限。
Windows DHCP Server 远程代码执行漏洞
CVE-2026-50518
严重级别:严重 CVSS:9.8
被利用级别:很有可能被利用
此漏洞无需用户交互。该漏洞源于 Windows DHCP Server 在处理包含恶意域名数据的特制网络请求时存在堆缓冲区溢出,导致数据越界写入并破坏服务内存,使攻击者能够影响 DHCP 服务的执行过程。攻击者无需身份验证或本地权限,但目标系统需启用可被网络访问的 DHCP Server 服务。成功利用后,攻击者可执行任意代码。
Windows GDI+ 远程代码执行漏洞
CVE-2026-50380
严重级别:严重 CVSS:9.6
被利用级别:有可能被利用
此漏洞需要用户交互。该漏洞源于 Windows GDI+ 在处理包含恶意图像记录的特制 EMF+ 文件时存在堆缓冲区溢出,导致数据越界写入并破坏应用程序内存,使攻击者能够影响相关程序的执行过程。攻击者无需身份验证或本地权限,但需诱导用户打开或处理特制文件。成功利用后,攻击者可执行任意代码。
Windows 可靠多播传输驱动程序(RMCAST)远程代码执行漏洞
CVE-2026-54982
严重级别:严重 CVSS:8.8
被利用级别:有可能被利用
此漏洞无需用户交互。该漏洞源于 Windows 可靠多播传输驱动程序在处理特制网络通信时存在整数下溢,导致数值计算发生回绕并引发资源处理异常,使攻击者能够影响相关程序的执行过程。攻击者无需身份验证或本地权限,但需与目标处于同一网段,且目标系统需使用受影响的 RMCAST 组件。成功利用后,攻击者可执行任意代码。
Windows TCP/IP 远程代码执行漏洞
CVE-2026-54999
严重级别:严重 CVSS:8.8
被利用级别:有可能被利用
此漏洞无需用户交互。该漏洞源于 Windows TCP/IP 在处理特制网络通信时存在竞态条件,导致多个执行流程并发访问共享资源时出现状态异常,使攻击者能够影响 TCP/IP 组件的执行过程。攻击者无需身份验证或本地权限,但需与目标系统处于同一网段。成功利用后,攻击者可执行任意代码。
Windows Print Spooler 远程代码执行漏洞
CVE-2026-58608
严重级别:严重 CVSS:8.8
被利用级别:有可能被利用
此漏洞无需用户交互。该漏洞源于 Windows Print Spooler 在处理打印机句柄和通知句柄时存在竞态条件及内存释放后重新使用缺陷,导致服务访问已释放的内存并发生内存损坏,使攻击者能够影响打印后台处理服务的执行过程。攻击者需通过身份验证并具备低权限,且目标系统需启用可被网络访问的 Print Spooler 服务。成功利用后,攻击者可执行任意代码。
Microsoft Windows Media Foundation 远程代码执行漏洞
CVE-2026-50655
严重级别:严重 CVSS:7.8
被利用级别:很有可能被利用
此漏洞需要用户交互。该漏洞源于 Windows Media Foundation 在处理特制媒体文件时存在堆缓冲区溢出,导致数据越界写入并破坏应用程序内存,使攻击者能够影响相关程序的执行过程。攻击者无需身份验证或本地权限,但需诱导用户下载并打开特制文件,该漏洞无法通过普通网络请求直接触发。成功利用后,攻击者可执行任意代码。
修复建议
1、通过火绒个人版/企业版【漏洞修复】功能修复漏洞。

2、下载微软官方提供的补丁:
https://msrc.microsoft.com/update-guide
完整微软通告:
https://msrc.microsoft.com/update-guide/releaseNote/2026-Jul