آپدیت امنیتی ماه آپریل مایکروسافت در مجموع 167 آسیبپذیری را برطرف میکند.
به گزارش مرکز مدیریت راهبردی افتا، از بین این آسیبپذیریها 2 مورد آنها Zero-day و 8 مورد Critical هستند.
آمار آسیبپذیریها به تفکیک نوع، به شرح زیر است:
- 93 مورد افزایش سطح دسترسی (Privilege Escalation)
- 13 مورد دور زدن مکانیزم های امنیتی
- 20 مورد اجرای کد از راه دور (RCE)
- 21 مورد افشای اطلاعات
- 10 مورد منع سرویس (DoS)
- 9 مورد جعل هویت (Spoofing)
دو آسیب پذیری Zero-day
CVE-2026-32201- آسیبپذیری Spoofing در Microsoft SharePoint Server: مایکروسافت این نقص را که در حملات واقعی مورد سوءاستفاده قرار گرفته بود، رفع کرده است. مشکل ناشی از اعتبارسنجی نادرست ورودیها در SharePoint است که به مهاجم اجازه میدهد عملیات Spoofing روی شبکه انجام دهد.
طبق گزارش مایکروسافت، سوءاستفاده موفق از این نقص میتواند باعث مشاهده اطلاعات حساس (Confidentiality) و تغییر دادههای افشا شده (Integrity) شود. اما دسترسی به منابع (Availability) بهطور کامل محدود نمیشود.
CVE-2026-33825- آسیبپذیری Elevation of Privilege در Microsoft Defender: این نقص به مهاجم اجازه میدهد تا دسترسی SYSTEM را به دست آورد. مشکل در Microsoft Defender Antimalware Platform نسخه ۴.۱۸.۲۶۰۳۰.۳۰۱۱ برطرف شده است و بهروزرسانی بهصورت خودکار دریافت میشود.
کاربران میتوانند به صورت دستی نیز از مسیر Windows Security > Virus & threat protection > Protection Updates > Check for updates آن را نصب کنند.
لازم به ذکر است چندین آسیبپذیری RCE در Microsoft Office نیز اصلاح شدهاند که میتوانند از طریق پنجره Preview یا باز کردن اسناد مخرب مورد سوءاستفاده قرار بگیرند.
پیشنهاد می شود با توجه به تعداد زیاد آسیبپذیریها و وجود Zero-dayهای فعال، بهروزرسانی فوری سیستمها و پایش دقیق رویدادهای امنیتی در صورت امکان آپدیت ها در اسرع وقت انجام شود.
لیست کامل به آپدیت ماه آپریل 2026 مایکروسافت
Product | CVE | Title | Severity |
.NET | .NET Denial of Service Vulnerability | Important | |
.NET | .NET Spoofing Vulnerability | Important | |
.NET and Visual Studio | .NET and Visual Studio Denial of Service Vulnerability | Important | |
.NET Framework | .NET Framework Denial of Service Vulnerability | Critical | |
.NET Framework | .NET Framework Denial of Service Vulnerability | Important | |
.NET, .NET Framework, Visual Studio | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | Important | |
Applocker Filter Driver (applockerfltr.sys) | Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability | Important | |
Azure Logic Apps | Azure Logic Apps Elevation of Privilege Vulnerability | Important | |
Azure Monitor Agent | Azure Monitor Agent Elevation of Privilege Vulnerability | Important | |
Azure Monitor Agent | Azure Monitor Agent Elevation of Privilege Vulnerability | Important | |
Desktop Window Manager | Desktop Window Manager Elevation of Privilege Vulnerability | Important | |
Desktop Window Manager | Desktop Window Manager Elevation of Privilege Vulnerability | Important | |
Desktop Window Manager | Desktop Window Manager Elevation of Privilege Vulnerability | Important | |
Desktop Window Manager | Desktop Window Manager Elevation of Privilege Vulnerability | Important | |
Desktop Window Manager | Desktop Window Manager Elevation of Privilege Vulnerability | Important | |
Function Discovery Service (fdwsd.dll) | Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability | Important | |
Function Discovery Service (fdwsd.dll) | Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability | Important | |
Function Discovery Service (fdwsd.dll) | Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability | Important | |
Function Discovery Service (fdwsd.dll) | Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability | Important | |
GitHub Copilot and Visual Studio Code | GitHub Copilot and Visual Studio Code Information Disclosure Vulnerability | Important | |
GitHub Repo: Git for Windows | GitHub: CVE-2026-32631 ‘git clone’ from manipulated repositories can leak NTLM hashes | Important | |
Input-Output Memory Management Unit (IOMMU) | AMD: CVE-2023-20585 IOMMU Write Buffer Vulnerability | Important | |
Microsoft Brokering File System | Microsoft Brokering File System Elevation of Privilege Vulnerability | Important | |
Microsoft Brokering File System | Microsoft Brokering File System Elevation of Privilege Vulnerability | Important | |
Microsoft Brokering File System | Microsoft Brokering File System Elevation of Privilege Vulnerability | Important | |
Microsoft Defender | Microsoft Defender Elevation of Privilege Vulnerability | Important | |
Microsoft Dynamics 365 (on-premises) | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | |
Microsoft Graphics Component | Windows Graphics Component Remote Code Execution Vulnerability | Important | |
Microsoft High Performance Compute Pack (HPC) | Microsoft High Performance Compute (HPC) Pack Elevation of Privilege Vulnerability | Important | |
Microsoft Management Console | Microsoft Management Console Elevation of Privilege Vulnerability | Important | |
Microsoft Office | Microsoft Office Remote Code Execution Vulnerability | Critical | |
Microsoft Office Excel | Microsoft Excel Remote Code Execution Vulnerability | Important | |
Microsoft Office Excel | Microsoft Excel Remote Code Execution Vulnerability | Important | |
Microsoft Office Excel | Microsoft Excel Remote Code Execution Vulnerability | Important | |
Microsoft Office Excel | Microsoft Excel Information Disclosure Vulnerability | Important | |
Microsoft Office Excel | Microsoft Excel Remote Code Execution Vulnerability | Important | |
Microsoft Office PowerPoint | Microsoft PowerPoint Remote Code Execution Vulnerability | Important | |
Microsoft Office SharePoint | Microsoft SharePoint Server Spoofing Vulnerability | Important | |
Microsoft Office SharePoint | Microsoft SharePoint Server Spoofing Vulnerability | Important | |
Microsoft Office Word | Microsoft Word Remote Code Execution Vulnerability | Important | |
Microsoft Office Word | Microsoft Word Remote Code Execution Vulnerability | Critical | |
Microsoft Office Word | Microsoft Word Remote Code Execution Vulnerability | Critical | |
Microsoft Office Word | Microsoft Word Remote Code Execution Vulnerability | Important | |
Microsoft Office Word | Microsoft Word Information Disclosure Vulnerability | Important | |
Microsoft Power Apps | Microsoft Power Apps Security Feature Bypass | Important | |
Microsoft PowerShell | Microsoft PowerShell Security Feature Bypass Vulnerability | Important | |
Microsoft PowerShell | PowerShell Elevation of Privilege Vulnerability | Important | |
Microsoft Windows | Connected User Experiences and Telemetry Service Denial of Service Vulnerability | Important | |
Microsoft Windows Search Component | Windows Search Service Elevation of Privilege Vulnerability | Important | |
Microsoft Windows Speech | Windows Speech Runtime Elevation of Privilege Vulnerability | Important | |
Node.js | HackerOne: CVE-2026-21637 TLS PSK/ALPN Callback Exceptions Bypass Error Handlers | Moderate | |
Remote Desktop Client | Remote Desktop Client Remote Code Execution Vulnerability | Critical | |
Role: Windows Hyper-V | Windows Hyper-V Remote Code Execution Vulnerability | Important | |
Role: Windows Hyper-V | Windows Hyper-V Remote Code Execution Vulnerability | Important | |
SQL Server | Microsoft SQL Server Remote Code Execution Vulnerability | Important | |
SQL Server | SQL Server Elevation of Privilege Vulnerability | Important | |
SQL Server | SQL Server Elevation of Privilege Vulnerability | Important | |
Universal Plug and Play (upnp.dll) | Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability | Important | |
Universal Plug and Play (upnp.dll) | Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability | Important | |
Windows Active Directory | Active Directory Spoofing Vulnerability | Important | |
Windows Active Directory | Windows Active Directory Remote Code Execution Vulnerability | Critical | |
Windows Admin Center | Windows Admin Center Spoofing Vulnerability | Important | |
Windows Advanced Rasterization Platform | Windows Advanced Rasterization Platform Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Ancillary Function Driver for WinSock | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | |
Windows Biometric Service | Windows Biometric Service Security Feature Bypass Vulnerability | Important | |
Windows BitLocker | Windows BitLocker Security Feature Bypass Vulnerability | Important | |
Windows Boot Loader | UEFI Secure Boot Security Feature Bypass Vulnerability | Important | |
Windows Boot Manager | Windows Boot Manager Security Feature Bypass Vulnerability | Important | |
Windows Client Side Caching driver (csc.sys) | Windows Client Side Caching driver (csc.sys) Elevation of Privilege Vulnerability | Important | |
Windows Cloud Files Mini Filter Driver | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | Important | |
Windows COM | Windows COM Elevation of Privilege Vulnerability | Important | |
Windows COM | Windows COM Server Information Disclosure Vulnerability | Important | |
Windows Common Log File System Driver | Windows Common Log File System Driver Elevation of Privilege Vulnerability | Important | |
Windows Container Isolation FS Filter Driver | Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability | Important | |
Windows Cryptographic Services | Microsoft Cryptographic Services Elevation of Privilege Vulnerability | Important | |
Windows Encrypting File System (EFS) | Windows Encrypted File System (EFS) Elevation of Privilege Vulnerability | Important | |
Windows File Explorer | Windows Print Spooler Information Disclosure Vulnerability | Important | |
Windows File Explorer | Web Account Manager Information Disclosure Vulnerability | Important | |
Windows File Explorer | Package Catalog Information Disclosure Vulnerability | Important | |
Windows GDI | Windows GDI Information Disclosure Vulnerability | Important | |
Windows GDI | Windows GDI Information Disclosure Vulnerability | Important | |
Windows Hello | Windows Hello Security Feature Bypass Vulnerability | Important | |
Windows Hello | Windows Hello Security Feature Bypass Vulnerability | Important | |
Windows HTTP.sys | HTTP.sys Denial of Service Vulnerability | Important | |
Windows IKE Extension | Windows Internet Key Exchange (IKE) Service Extensions Remote Code Execution Vulnerability | Critical | |
Windows Installer | Windows Installer Elevation of Privilege Vulnerability | Important | |
Windows Kerberos | Windows Kerberos Elevation of Privilege Vulnerability | Important | |
Windows Kernel | Windows Kernel Information Disclosure Vulnerability | Important | |
Windows Kernel | Windows Kernel Information Disclosure Vulnerability | Important | |
Windows Kernel | Windows Kernel Elevation of Privilege Vulnerability | Important | |
Windows Kernel | Windows Kernel Information Disclosure Vulnerability | Important | |
Windows Kernel | Windows Kernel Elevation of Privilege Vulnerability | Important | |
Windows Kernel | Windows Kernel Elevation of Privilege Vulnerability | Important | |
Windows Kernel | Windows Kernel Elevation of Privilege Vulnerability | Important | |
Windows Kernel Memory | Windows Kernel Memory Information Disclosure Vulnerability | Important | |
Windows Local Security Authority Subsystem Service (LSASS) | Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability | Important | |
Windows Local Security Authority Subsystem Service (LSASS) | Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability | Important | |
Windows LUAFV | Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability | Important | |
Windows Management Services | Windows Management Services Elevation of Privilege Vulnerability | Important | |
Windows OLE | Windows OLE Elevation of Privilege Vulnerability | Important | |
Windows Print Spooler Components | Windows Print Spooler Elevation of Privilege Vulnerability | Important | |
Windows Projected File System | Windows Projected File System Elevation of Privilege Vulnerability | Important | |
Windows Projected File System | Windows Projected File System Elevation of Privilege Vulnerability | Important | |
Windows Projected File System | Windows Projected File System Elevation of Privilege Vulnerability | Important | |
Windows Projected File System | Windows Projected File System Elevation of Privilege Vulnerability | Important | |
Windows Projected File System | Windows Projected File System Elevation of Privilege Vulnerability | Important | |
Windows Push Notifications | Windows Push Notifications Elevation of Privilege Vulnerability | Important | |
Windows Push Notifications | Windows Push Notifications Elevation of Privilege Vulnerability | Important | |
Windows Push Notifications | Windows Push Notifications Elevation of Privilege Vulnerability | Important | |
Windows Push Notifications | Windows Push Notifications Elevation of Privilege Vulnerability | Important | |
Windows Push Notifications | Windows Push Notifications Elevation of Privilege Vulnerability | Important | |
Windows Recovery Environment Agent | Windows Recovery Environment Security Feature Bypass Vulnerability | Important | |
Windows Redirected Drive Buffering | Windows Redirected Drive Buffering System Denial of Service Vulnerability | Important | |
Windows Remote Desktop | Remote Desktop Spoofing Vulnerability | Important | |
Windows Remote Desktop Licensing Service | Remote Desktop Licensing Service Elevation of Privilege Vulnerability | Important | |
Windows Remote Desktop Licensing Service | Remote Desktop Licensing Service Elevation of Privilege Vulnerability | Important | |
Windows Remote Procedure Call | Remote Procedure Call Information Disclosure Vulnerability | Important | |
Windows RPC API | Remote Access Management service/API (RPC server) Elevation of Privilege Vulnerability | Important | |
Windows Secure Boot | MITRE: CVE-2026-25250 Secure Boot disable Eazy Fix | Important | |
Windows Sensor Data Service | Windows Sensor Data Service Elevation of Privilege Vulnerability | Important | |
Windows Server Update Service | Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability | Important | |
Windows Server Update Service | Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability | Important | |
Windows Server Update Service | Windows Server Update Service (WSUS) Tampering Vulnerability | Important | |
Windows Shell | Windows Shell Elevation of Privilege Vulnerability | Important | |
Windows Shell | Windows Shell Elevation of Privilege Vulnerability | Important | |
Windows Shell | Windows Shell Elevation of Privilege Vulnerability | Important | |
Windows Shell | Windows Shell Security Feature Bypass Vulnerability | Important | |
Windows Shell | Windows Shell Information Disclosure Vulnerability | Important | |
Windows Shell | Windows Shell Spoofing Vulnerability | Important | |
Windows Snipping Tool | Windows Snipping Tool Remote Code Execution Vulnerability | Important | |
Windows Snipping Tool | Windows Snipping Tool Spoofing Vulnerability | Moderate | |
Windows Speech Brokered Api | Windows Speech Brokered Api Elevation of Privilege Vulnerability | Important | |
Windows Speech Brokered Api | Windows Speech Brokered Api Elevation of Privilege Vulnerability | Important | |
Windows SSDP Service | Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability | Important | |
Windows SSDP Service | Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability | Important | |
Windows SSDP Service | Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability | Important | |
Windows Storage Spaces Controller | Windows Storage Spaces Controller Elevation of Privilege Vulnerability | Important | |
Windows Storage Spaces Controller | Windows Storage Spaces Controller Elevation of Privilege Vulnerability | Important | |
Windows TCP/IP | Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability | Important | |
Windows TCP/IP | Windows TCP/IP Remote Code Execution Vulnerability | Critical | |
Windows TDI Translation Driver (tdx.sys) | Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Remote Code Execution Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Information Disclosure Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | |
Windows Universal Plug and Play (UPnP) Device Host | Windows UPnP Device Host Elevation of Privilege Vulnerability | Important | |
Windows USB Print Driver | Windows USB Printing Stack (usbprint.sys) Elevation of Privilege Vulnerability | Important | |
Windows User Interface Core | Windows User Interface Core Elevation of Privilege Vulnerability | Important | |
Windows User Interface Core | Windows User Interface Core Elevation of Privilege Vulnerability | Important | |
Windows User Interface Core | Windows User Interface Core Elevation of Privilege Vulnerability | Important | |
Windows User Interface Core | Windows User Interface Core Elevation of Privilege Vulnerability | Important | |
Windows Virtualization-Based Security (VBS) Enclave | Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability | Important | |
Windows Virtualization-Based Security (VBS) Enclave | UEFI Secure Boot Security Feature Bypass Vulnerability | Important | |
Windows WalletService | Windows WalletService Elevation of Privilege Vulnerability | Important | |
Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) | Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) Elevation of Privilege Vulnerability | Important | |
Windows Win32K – GRFX | Win32k Elevation of Privilege Vulnerability | Important | |
Windows Win32K – ICOMP | Windows Win32k Elevation of Privilege Vulnerability | Important |
منبع: