最新消息

發佈編號

TACERT-ANA-2026051902050000

發佈時間

2026-05-19 14:49:01

事故類型

ANA-漏洞預警

發現時間

2026-05-19 14:49:01

影響等級

中

[主旨說明:]【漏洞預警】微軟釋出115年5月份安全性更新

[內容說明:]
轉發   國家資安資訊分享與分析中心 資安訊息警訊 NISAC-200-202605-00000007 

微軟釋出115年5月份安全性更新，共修補139個漏洞，其中包含30個高風險漏洞與1個已遭利用之漏洞，請儘速確認並進行修補。  

情資分享等級: WHITE(情資內容為可公開揭露之資訊)

[影響平台:]
【具高風險漏洞之產品】
ASP.NET Core
Azure AI Foundry M365 published agents
Azure Cloud Shell
Azure Connected Machine Agent
Azure DevOps
Azure Entra ID
Azure Logic Apps
Azure Machine Learning
Azure Managed Instance for Apache Cassandra
Azure Monitor Agent
Azure Notification Service
Azure SDK
Copilot Chat (Microsoft Edge)
Data Deduplication
Dynamics Business Central
GitHub Copilot and Visual Studio
M365 Copilot
M365 Copilot for Desktop
Microsoft Authenticator
Microsoft Data Formulator
Microsoft Dynamics 365 Customer Insights
Microsoft Dynamics 365 (on-premises)
Microsoft Edge (Chromium-based)
Microsoft Edge for Android
Microsoft Exchange Server
Microsoft Office
Microsoft Office Click-To-Run
Microsoft Office Excel
Microsoft Office PowerPoint
Microsoft Office SharePoint
Microsoft Office Word
Microsoft Partner Center
Microsoft SSO Plugin for Jira ＆ Confluence
Microsoft Teams
Microsoft Windows DNS
.NET
Power Automate
SQL Server
Telnet Client
Visual Studio Code
Windows Admin Center
Windows Ancillary Function Driver for WinSock
Windows Application Identity (AppID) Subsystem
Windows Cloud Files Mini Filter Driver
Windows Common Log File System Driver
Windows Cryptographic Services
Windows DWM Core Library
Windows Event Logging Service
Windows Filtering Platform (WFP)
Windows GDI
Windows Hyper-V
Windows Internet Key Exchange (IKE) Protocol
Windows Kernel
Windows Kernel - Mode Drivers
Windows LDAP - Lightweight Directory Access Protocol
Windows LLDP
Windows Message Queuing
Windows Native WiFi Miniport Driver
Windows Netlogon
Windows Print Spooler Components
Windows Projected File System
Windows Remote Desktop
Windows Rich Text Edit
Windows Rich Text Edit Control
Windows Secure Boot
Windows SMB Client
Windows Storage Spaces Controller
Windows Storport Miniport Driver
Windows TCP/IP
Windows Telephony Service
Windows Volume Manager Extension Driver
Windows Win32K – GRFX
Windows Win32K - ICOMP

[建議措施:]
目前微軟官方已針對弱點釋出修復版本，請各機關可聯絡系統維護廠商或參考以下連結： https://msrc.microsoft.com/update-guide/releaseNote/2026-May

[參考資料:]
1. https://msrc.microsoft.com/update-guide/releaseNote/2026-May

(此通報僅在於告知相關資訊，並非為資安事件)，如果您對此通報的內容有疑問或有關於此事件的建議，歡迎與我們連絡。

教育機構資安通報應變小組
網址：https://info.cert.tanet.edu.tw/
專線電話：07-5250211
網路電話：98400000
E-Mail：Email住址會使用灌水程式保護機制。你需要啟動Javascript才能觀看它