ГлавнаяУязвимости → CVE-2026-26151
7.1высокая

CVE-2026-26151

→ есть в БДУ: BDU:2026-05490 (на русском)
Описание (на английском; русское — в БДУ выше)

Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network.

Затрагиваемое ПО
Microsoft Windows 10 1607Microsoft Windows 10 1809Microsoft Windows 10 21h2Microsoft Windows 10 22h2Microsoft Windows 11 23h2Microsoft Windows 11 24h2Microsoft Windows 11 25h2Microsoft Windows 11 26h1Microsoft Windows server 2012Microsoft Windows server 2016Microsoft Windows server 2019Microsoft Windows server 2022Microsoft Windows server 2022 23h2Microsoft Windows server 2025
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
Источники
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26151https://www.vicarius.io/vsociety/posts/cve-2026-26151-detection-script-spoofing-vulnerability-affecting-windows-remote-desktophttps://www.vicarius.io/vsociety/posts/cve-2026-26151-mitigation-script-spoofing-vulnerability-affecting-windows-remote-desktop