Microsoft Windows Telephony Server 资源管理错误漏洞

基本信息

漏洞ID：
漏洞类型：资源管理错误
发布日期：2026-05-12 00:00:00
更新时间：2026-05-13 00:00:00
CVE编号：CVE-2026-40382
CNNVD-ID：CNNVD-202605-2925
漏洞平台：微软
CVSS评分：

漏洞来源

暂无

漏洞详情

Microsoft Windows Telephony Server是美国微软（Microsoft）公司的一个组件，它支持电话应用程序编程接口（TAPI），允许计算机程序与共享的电话服务进行通信。 Microsoft Windows Telephony Server存在资源管理错误漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响：Windows 11 Version 24H2 for ARM64-based Systems,Windows 11 Version 24H2 for x64-based Systems,Windows Server 2025,Windows 11 version 26H1 for x64-based Systems,Windows 11 Version 26H1 for ARM64-based Systems,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems,Windows Server 2016,Windows Server 2016 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows Server 2012 R2 (Server Core installation),Windows 10 Version 22H2 for 32-bit Systems,Windows Server 2025 (Server Core installation),Windows 11 Version 25H2 for ARM64-based Systems,Windows 11 Version 25H2 for x64-based Systems,Windows 11 Version 23H2 for ARM64-based Systems,Windows 11 Version 23H2 for x64-based Systems,Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for x64-based Systems,Windows 10 Version 22H2 for x64-based Systems,Windows 10 Version 22H2 for ARM64-based Systems,Windows Server 2022, 23H2 Edition (Server Core installation)。

参考资料

来源:msrc.microsoft.com 链接:https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40382 来源:nvd.nist.gov 链接:https://nvd.nist.gov/vuln/detail/CVE-2026-40382