Styczniowy Wtorek Microsoftu 2026. (P26-013)

utworzone przez | sty 15, 2026 | Aktualizacje

Microsoft w styczniu 2026 roku opublikował aktualizacje w ramach Patch Tuesday, które naprawiają 114 luk, w tym trzy zero-day (jedna aktywnie wykorzystywana, dwie publicznie ujawnione) oraz osiem krytycznych podatności (sześć umożliwiających zdalne wykonanie kodu i dwie eskalację uprawnień).

Zero-day luki

  • CVE-2026-20805 (Desktop Window Manager): aktywnie wykorzystywana luka ujawnienia informacji, pozwalająca lokalnym atakującym odczytywać wrażliwe adresy w pamięci. Poprawka zapobiega nieautoryzowanemu dostępowi do danych.
  • CVE-2026-21265 (Secure Boot): luka obejścia zabezpieczeń spowodowana wygasającymi certyfikatami Secure Boot z 2011 roku. Aktualizacja odnowiła certyfikaty, aby utrzymać integralność procesu rozruchu.
  • CVE-2023-31096 (Sterownik Agere Soft Modem): wcześniej znana luka eskalacji uprawnień. Microsoft usunął podatne sterowniki (agrsm64.sys i agrsm.sys) z systemu Windows w tej aktualizacji.

Luki krytyczne

  • Naprawiono sześć luk umożliwiających zdalne wykonanie kodu oraz dwie dotyczące eskalacji uprawnień.
  • Łącznie załatano ponad 50 luk eskalacji uprawnień, 22 ujawnienia informacji, 22 zdalnego wykonania kodu, 3 obejścia zabezpieczeń, 5 spoofingu oraz 2 ataki typu odmowa usługi (DoS) w różnych komponentach Windows.
TagCVE IDOpisKrytyczność
Agere Windows Modem DriverCVE-2023-31096MITRE: CVE-2023-31096 Windows Agere Soft Modem Driver Elevation of Privilege VulnerabilityWażna
Azure Connected Machine AgentCVE-2026-21224Azure Connected Machine Agent Elevation of Privilege VulnerabilityWażna
Azure Core shared client library for PythonCVE-2026-21226Azure Core shared client library for Python Remote Code Execution VulnerabilityWażna
Capability Access Management Service (camsvc)CVE-2026-20835Capability Access Management Service (camsvc) Information Disclosure VulnerabilityWażna
Capability Access Management Service (camsvc)CVE-2026-20851Capability Access Management Service (camsvc) Information Disclosure VulnerabilityWażna
Capability Access Management Service (camsvc)CVE-2026-20830Capability Access Management Service (camsvc) Elevation of Privilege VulnerabilityWażna
Capability Access Management Service (camsvc)CVE-2026-21221Capability Access Management Service (camsvc) Elevation of Privilege VulnerabilityWażna
Capability Access Management Service (camsvc)CVE-2026-20815Capability Access Management Service (camsvc) Elevation of Privilege VulnerabilityWażna
Connected Devices Platform Service (Cdpsvc)CVE-2026-20864Windows Connected Devices Platform Service Elevation of Privilege VulnerabilityWażna
Desktop Window ManagerCVE-2026-20805Desktop Window Manager Information Disclosure VulnerabilityWażna
Desktop Window ManagerCVE-2026-20871Desktop Windows Manager Elevation of Privilege VulnerabilityWażna
Dynamic Root of Trust for Measurement (DRTM)CVE-2026-20962Dynamic Root of Trust for Measurement (DRTM) Information Disclosure VulnerabilityWażna
Graphics KernelCVE-2026-20836DirectX Graphics Kernel Elevation of Privilege VulnerabilityWażna
Graphics KernelCVE-2026-20814DirectX Graphics Kernel Elevation of Privilege VulnerabilityWażna
Host Process for Windows TasksCVE-2026-20941Host Process for Windows Tasks Elevation of Privilege VulnerabilityWażna
Inbox COM ObjectsCVE-2026-21219Inbox COM Objects (Global Memory) Remote Code Execution VulnerabilityWażna
MarinerCVE-2026-21444libtpms returns wrong initialization vector when certain symmetric ciphers are usedUmiarkowana
MarinerCVE-2025-68758backlight: led-bl: Add devlink to supplier LEDsUmiarkowana
MarinerCVE-2025-68757drm/vgem-fence: Fix potential deadlock on releaseUmiarkowana
MarinerCVE-2025-68764NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flagsUmiarkowana
MarinerCVE-2025-68756block: Use RCU in blk_mq_[un]quiesce_tagset() instead of set->tag_list_lockWażna
MarinerCVE-2025-68763crypto: starfive – Correctly handle return of sg_nents_for_lenUmiarkowana
MarinerCVE-2025-68755staging: most: remove broken i2c driverUmiarkowana
MarinerCVE-2025-68759wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring()Ważna
MarinerCVE-2025-68766irqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc()Ważna
MarinerCVE-2025-68753ALSA: firewire-motu: add bounds check in put_user loop for DSP eventsWażna
MarinerCVE-2025-68765mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add()Umiarkowana
Microsoft Edge (Chromium-based)CVE-2026-0628Chromium: CVE-2026-0628 Insufficient policy enforcement in WebView tagNieokreślona
Microsoft Graphics ComponentCVE-2026-20822Windows Graphics Component Elevation of Privilege VulnerabilityKrytyczna
Microsoft OfficeCVE-2026-20952Microsoft Office Remote Code Execution VulnerabilityKrytyczna
Microsoft OfficeCVE-2026-20953Microsoft Office Remote Code Execution VulnerabilityKrytyczna
Microsoft OfficeCVE-2026-20943Microsoft Office Click-To-Run Elevation of Privilege VulnerabilityWażna
Microsoft Office ExcelCVE-2026-20949Microsoft Excel Security Feature Bypass VulnerabilityWażna
Microsoft Office ExcelCVE-2026-20950Microsoft Excel Remote Code Execution VulnerabilityWażna
Microsoft Office ExcelCVE-2026-20956Microsoft Excel Remote Code Execution VulnerabilityWażna
Microsoft Office ExcelCVE-2026-20957Microsoft Excel Remote Code Execution VulnerabilityKrytyczna
Microsoft Office ExcelCVE-2026-20946Microsoft Excel Remote Code Execution VulnerabilityWażna
Microsoft Office ExcelCVE-2026-20955Microsoft Excel Remote Code Execution VulnerabilityKrytyczna
Microsoft Office SharePointCVE-2026-20958Microsoft SharePoint Information Disclosure VulnerabilityWażna
Microsoft Office SharePointCVE-2026-20959Microsoft SharePoint Server Spoofing VulnerabilityWażna
Microsoft Office SharePointCVE-2026-20947Microsoft SharePoint Server Remote Code Execution VulnerabilityWażna
Microsoft Office SharePointCVE-2026-20951Microsoft SharePoint Server Remote Code Execution VulnerabilityWażna
Microsoft Office SharePointCVE-2026-20963Microsoft SharePoint Remote Code Execution VulnerabilityWażna
Microsoft Office WordCVE-2026-20948Microsoft Word Remote Code Execution VulnerabilityWażna
Microsoft Office WordCVE-2026-20944Microsoft Word Remote Code Execution VulnerabilityKrytyczna
Printer Association ObjectCVE-2026-20808Windows File Explorer Elevation of Privilege VulnerabilityWażna
SQL ServerCVE-2026-20803Microsoft SQL Server Elevation of Privilege VulnerabilityWażna
Tablet Windows User Interface (TWINUI) SubsystemCVE-2026-20827Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure VulnerabilityWażna
Tablet Windows User Interface (TWINUI) SubsystemCVE-2026-20826Tablet Windows User Interface (TWINUI) Subsystem Information Disclosure VulnerabilityWażna
Windows Admin CenterCVE-2026-20965Windows Admin Center Elevation of Privilege VulnerabilityWażna
Windows Ancillary Function Driver for WinSockCVE-2026-20831Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityWażna
Windows Ancillary Function Driver for WinSockCVE-2026-20860Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityWażna
Windows Ancillary Function Driver for WinSockCVE-2026-20810Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityWażna
Windows Client-Side Caching (CSC) ServiceCVE-2026-20839Windows Client-Side Caching (CSC) Service Information Disclosure VulnerabilityWażna
Windows Clipboard ServerCVE-2026-20844Windows Clipboard Server Elevation of Privilege VulnerabilityWażna
Windows Cloud Files Mini Filter DriverCVE-2026-20940Windows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityWażna
Windows Cloud Files Mini Filter DriverCVE-2026-20857Windows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityWażna
Windows Common Log File System DriverCVE-2026-20820Windows Common Log File System Driver Elevation of Privilege VulnerabilityWażna
Windows Deployment ServicesCVE-2026-0386Windows Deployment Services Remote Code Execution VulnerabilityWażna
Windows DWMCVE-2026-20842Microsoft DWM Core Library Elevation of Privilege VulnerabilityWażna
Windows Error ReportingCVE-2026-20817Windows Error Reporting Service Elevation of Privilege VulnerabilityWażna
Windows File ExplorerCVE-2026-20939Windows File Explorer Information Disclosure VulnerabilityWażna
Windows File ExplorerCVE-2026-20932Windows File Explorer Information Disclosure VulnerabilityWażna
Windows File ExplorerCVE-2026-20937Windows File Explorer Information Disclosure VulnerabilityWażna
Windows File ExplorerCVE-2026-20823Windows File Explorer Information Disclosure VulnerabilityWażna
Windows HelloCVE-2026-20852Windows Hello Tampering VulnerabilityWażna
Windows HelloCVE-2026-20804Windows Hello Tampering VulnerabilityWażna
Windows HTTP.sysCVE-2026-20929Windows HTTP.sys Elevation of Privilege VulnerabilityWażna
Windows Hyper-VCVE-2026-20825Windows Hyper-V Information Disclosure VulnerabilityWażna
Windows InstallerCVE-2026-20816Windows Installer Elevation of Privilege VulnerabilityWażna
Windows Internet Connection Sharing (ICS)CVE-2026-20828Windows rndismp6.sys Information Disclosure VulnerabilityWażna
Windows KerberosCVE-2026-20849Windows Kerberos Elevation of Privilege VulnerabilityWażna
Windows KerberosCVE-2026-20833Windows Kerberos Information Disclosure VulnerabilityWażna
Windows KernelCVE-2026-20838Windows Kernel Information Disclosure VulnerabilityWażna
Windows KernelCVE-2026-20818Windows Kernel Information Disclosure VulnerabilityWażna
Windows Kernel MemoryCVE-2026-20809Windows Kernel Memory Elevation of Privilege VulnerabilityWażna
Windows Kernel-Mode DriversCVE-2026-20859Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityWażna
Windows LDAP – Lightweight Directory Access ProtocolCVE-2026-20812LDAP Tampering VulnerabilityWażna
Windows Local Security Authority Subsystem Service (LSASS)CVE-2026-20854Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution VulnerabilityKrytyczna
Windows Local Security Authority Subsystem Service (LSASS)CVE-2026-20875Windows Local Security Authority Subsystem Service (LSASS) Denial of Service VulnerabilityWażna
Windows Local Session Manager (LSM)CVE-2026-20869Windows Local Session Manager (LSM) Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20924Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20874Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20862Windows Management Services Information Disclosure VulnerabilityWażna
Windows Management ServicesCVE-2026-20866Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20867Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20861Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20865Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20858Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20918Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20877Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20923Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows Management ServicesCVE-2026-20873Windows Management Services Elevation of Privilege VulnerabilityWażna
Windows MediaCVE-2026-20837Windows Media Remote Code Execution VulnerabilityWażna
Windows Motorola Soft Modem DriverCVE-2024-55414Windows Motorola Soft Modem Driver Elevation of Privilege VulnerabilityWażna
Windows NDISCVE-2026-20936Windows NDIS Information Disclosure VulnerabilityWażna
Windows NTFSCVE-2026-20922Windows NTFS Remote Code Execution VulnerabilityWażna
Windows NTFSCVE-2026-20840Windows NTFS Remote Code Execution VulnerabilityWażna
Windows NTLMCVE-2026-20925NTLM Hash Disclosure Spoofing VulnerabilityWażna
Windows NTLMCVE-2026-20872NTLM Hash Disclosure Spoofing VulnerabilityWażna
Windows Remote AssistanceCVE-2026-20824Windows Remote Assistance Security Feature Bypass VulnerabilityWażna
Windows Remote Procedure CallCVE-2026-20821Remote Procedure Call Information Disclosure VulnerabilityWażna
Windows Remote Procedure Call Interface Definition Language (IDL)CVE-2026-20832Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege VulnerabilityWażna
Windows Routing and Remote Access Service (RRAS)CVE-2026-20868Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityWażna
Windows Routing and Remote Access Service (RRAS)CVE-2026-20843Windows Routing and Remote Access Service (RRAS) Elevation of Privilege VulnerabilityWażna
Windows Secure BootCVE-2026-21265Secure Boot Certificate Expiration Security Feature Bypass VulnerabilityWażna
Windows Server Update ServiceCVE-2026-20856Windows Server Update Service (WSUS) Remote Code Execution VulnerabilityWażna
Windows ShellCVE-2026-20834Windows Spoofing VulnerabilityWażna
Windows ShellCVE-2026-20847Microsoft Windows File Explorer Spoofing VulnerabilityWażna
Windows SMB ServerCVE-2026-20926Windows SMB Server Elevation of Privilege VulnerabilityWażna
Windows SMB ServerCVE-2026-20921Windows SMB Server Elevation of Privilege VulnerabilityWażna
Windows SMB ServerCVE-2026-20919Windows SMB Server Elevation of Privilege VulnerabilityWażna
Windows SMB ServerCVE-2026-20927Windows SMB Server Denial of Service VulnerabilityWażna
Windows SMB ServerCVE-2026-20848Windows SMB Server Elevation of Privilege VulnerabilityWażna
Windows SMB ServerCVE-2026-20934Windows SMB Server Elevation of Privilege VulnerabilityWażna
Windows Telephony ServiceCVE-2026-20931Windows Telephony Service Elevation of Privilege VulnerabilityWażna
Windows TPMCVE-2026-20829TPM Trustlet Information Disclosure VulnerabilityWażna
Windows Virtualization-Based Security (VBS) EnclaveCVE-2026-20938Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege VulnerabilityWażna
Windows Virtualization-Based Security (VBS) EnclaveCVE-2026-20935Windows Virtualization-Based Security (VBS) Information Disclosure VulnerabilityWażna
Windows Virtualization-Based Security (VBS) EnclaveCVE-2026-20819Windows Virtualization-Based Security (VBS) Information Disclosure VulnerabilityWażna
Windows Virtualization-Based Security (VBS) EnclaveCVE-2026-20876Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege VulnerabilityKrytyczna
Windows WalletServiceCVE-2026-20853Windows WalletService Elevation of Privilege VulnerabilityWażna
Windows Win32K – ICOMPCVE-2026-20811Win32k Elevation of Privilege VulnerabilityWażna
Windows Win32K – ICOMPCVE-2026-20870Windows Win32 Kernel Subsystem Elevation of Privilege VulnerabilityWażna
Windows Win32K – ICOMPCVE-2026-20920Win32k Elevation of Privilege VulnerabilityWażna
Windows Win32K – ICOMPCVE-2026-20863Win32k Elevation of Privilege VulnerabilityWażna

Źródło:

https://www.bleepingcomputer.com/news/microsoft/microsoft-january-2026-patch-tuesday-fixes-3-zero-days-114-flaws