¡¾·ì϶¹«¸æ¡¿Î¢Èí4Ô¶à¸ö°²È«·ì϶

°ä²¼¹¦·ò 2025-04-09

Ò»¡¢·ì϶¸ÅÊö


2025Äê4ÔÂ9ÈÕ£¬GA»Æ½ð¼×¼¯ÍÅVSRC¼à²âµ½Î¢Èí°ä²¼ÁË4Ô°²È«¸üУ¬±¾´Î¸üн¨¸´ÁË125¸ö·ì϶£¬º­¸ÇȨÏÞÌáÉý¡¢Ô¶³Ì´úÂëÖ´ÐÓ×¢°²È«Ö°ÄÜÈƹýµÈ¶àÖÖ·ì϶ÀàÐÍ¡£·ì϶¼¶±ðÉ¢²¼ÈçÏ£º11¸öÑϳÁ¼¶±ð·ì϶£¬112¸ö³ÁÒª¼¶±ð·ì϶£¬2¸öµÍΣ¼¶±ð·ì϶£¨·ì϶¼¶±ðƾ¾Ý΢Èí¹Ù·½Êý¾Ý£©¡£


ÆäÖУ¬12¸ö·ì϶±»Î¢ÈíÏóÕ÷Ϊ¡°¸ü¿ÉÄܱ»ÀûÓá±¼°¡°¼ì²âÀûÓÃÇé¾°¡±£¬Åú×¢ÕâЩ·ì϶´æÔڽϸߵÄÀûÓ÷çÏÕ£¬½¨ÒéÓÅÏȽ¨¸´ÒÔ½µµÍDZÔÚ°²È«Íþв¡£


CVE-ID

CVE ±êÌâ

·ì϶¼¶±ð

CVE-2025-29809

Windows Kerberos °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-26670

ÇáÁ¿¼¶Ä¿Â¼½Ó¼ûºÍ̸ (LDAP) ¿Í»§¶ËÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2025-27472

Windows Web ²éÎÊÏóÕ÷°²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-27480

Windows Ô¶³Ì×ÀÃæ·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2025-27482

Windows Ô¶³Ì×ÀÃæ·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2025-27727

Windows Installer ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29792

Microsoft Office ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29793

Microsoft SharePoint Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-29794

Microsoft SharePoint Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-29809

Windows Kerberos °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-29812

DirectX ͼÐÎÄÚºËÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29824

Windows ͨÓÃÈÕÖ¾ÎļþϵͳÇý¶¯·¨Ê½ÌáÉýȨÏÞ·ì϶

³ÁÒª


΢Èí4Ô¸üн¨¸´µÄÆëÈ«·ì϶ÁбíÈçÏ£º


CVE-ID

CVE ±êÌâ

·ì϶¼¶±ð

CVE-2025-20570

Visual Studio Code ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-21174

»ùÓÚ Windows ³ß¶ÈµÄ´æ´¢ÖÎÀí·þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-21191

Windows ±¾µØ°²È«»ú¹¹ (LSA) ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-21197

Windows NTFS ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-21203

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-21204

Windows Process Activation ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-21205

Windows µç»°·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-21221

Windows µç»°·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-21222

Windows µç»°·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-24058

Windows DWM Ö÷Ìâ¿âÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-24060

Microsoft DWM Ö÷Ìâ¿âȨÏÞÌáÉý·ì϶

³ÁÒª

CVE-2025-24062

Microsoft DWM Ö÷Ìâ¿âȨÏÞÌáÉý·ì϶

³ÁÒª

CVE-2025-24073

Microsoft DWM Ö÷Ìâ¿âȨÏÞÌáÉý·ì϶

³ÁÒª

CVE-2025-24074

Microsoft DWM Ö÷Ìâ¿âȨÏÞÌáÉý·ì϶

³ÁÒª

CVE-2025-25000

»ùÓÚ Chromium µÄ Microsoft Edge Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-25001

Microsoft Edge for iOS ºýŪ·ì϶

µÍ

CVE-2025-25002

Azure Local Ⱥ¼¯ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-26628

Azure Local Ⱥ¼¯ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-26635

Windows Hello °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-26637

BitLocker °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-26639

Windows USB ´òÓ¡Çý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26640

Windows Êý×ÖýÌåÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26641

Microsoft ÐÂÎŶÓÁÐ (MSMQ) »Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-26642

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-26644

Windows Hello ºýŪ·ì϶

³ÁÒª

CVE-2025-26647

Windows Kerberos ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26648

Windows ÄÚºËÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26649

Windows °²È«Í¨Â·ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26651

Windows ±¾µØ»áÒéÖÎÀíÆ÷ (LSM) »Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-26652

»ùÓÚ Windows ³ß¶ÈµÄ´æ´¢ÖÎÀí·þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-26663

Windows ÇáÁ¿¼¶Ä¿Â¼½Ó¼ûºÍ̸ (LDAP) Ô¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2025-26664

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-26665

Windows upnphost.dll ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26666

Windows Media Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-26667

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-26668

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-26669

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-26670

ÇáÁ¿¼¶Ä¿Â¼½Ó¼ûºÍ̸ (LDAP) ¿Í»§¶ËÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2025-26671

Windows Ô¶³Ì×ÀÃæ·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-26672

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-26673

Windows ÇáÁ¿¼¶Ä¿Â¼½Ó¼ûºÍ̸ (LDAP) »Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-26674

Windows Media Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-26675

ºÏÓÃÓÚ Linux µÄ Windows ×ÓϵͳÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26676

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-26678

Windows Defender ÀûÓ÷¨Ê½½ÚÔ찲ȫְÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-26679

RPC ÖÕµãÓ³É䷨ʽ·þÎñÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26680

»ùÓÚ Windows ³ß¶ÈµÄ´æ´¢ÖÎÀí·þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-26681

Win32k ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26682

ASP.NET Core ºÍ Visual Studio »Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-26686

Windows TCP/IP Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-26687

Win32k ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-26688

Microsoft Ðé¹¹Ó²ÅÌÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27467

Windows Êý×ÖýÌåÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27469

Windows ÇáÁ¿¼¶Ä¿Â¼½Ó¼ûºÍ̸ (LDAP) »Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-27470

»ùÓÚ Windows ³ß¶ÈµÄ´æ´¢ÖÎÀí·þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-27471

Microsoft Á÷ʽ´¦Ö÷þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-27472

Windows Web ²éÎÊÏóÕ÷°²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-27473

HTTP.sys »Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-27474

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-27475

Windows Update Stack ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27476

Windows Êý×ÖýÌåÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27477

Windows µç»°·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-27478

Windows ±¾µØ°²È«»ú¹¹ (LSA) ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27479

Kerberos ÃÜÔ¿·Ö·¢´úÀí·þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-27480

Windows Ô¶³Ì×ÀÃæ·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2025-27481

Windows µç»°·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-27482

Windows Ô¶³Ì×ÀÃæ·þÎñÔ¶³Ì´úÂëÖ´Ðзì϶

ÑϳÁ

CVE-2025-27483

NTFS ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27484

Windows ͨÓü´²å¼´Óà (UPnP) É豸Ö÷»úÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27485

»ùÓÚ Windows ³ß¶ÈµÄ´æ´¢ÖÎÀí·þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-27486

»ùÓÚ Windows ³ß¶ÈµÄ´æ´¢ÖÎÀí·þÎñ»Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-27487

Ô¶³Ì×ÀÃæ¿Í»§¶ËÔ¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-27489

Azure Local ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27490

Windows Bluetooth ·þÎñÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27491

Windows Hyper-V Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-27492

Windows °²È«Í¨Â·ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27727

Windows Installer ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27728

Windows ÄÚºËģʽÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27729

Windows Shell Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-27730

Windows Êý×ÖýÌåÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27731

Microsoft OpenSSH for Windows ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27732

Windows ͼÐÎ×é¼þÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27733

NTFS ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27735

Windows »ùÓÚÐé¹¹»¯µÄ°²È«ÐÔ (VBS) °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-27736

Windows Power Dependency Coordinator ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-27737

Windows °²È«ÇøÓòÓ³É䰲ȫְÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-27738

Windows ¸´Ô­Îļþϵͳ (ReFS) ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-27739

Windows ÄÚºËÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27740

Active Directory Ö¤Êé·þÎñÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27741

NTFS ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27742

NTFS ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-27743

Microsoft System Center ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27744

Microsoft Office ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-27745

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-27746

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-27747

Microsoft Word Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-27748

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-27749

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-27750

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-27751

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-27752

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-29791

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-29792

Microsoft Office ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29793

Microsoft SharePoint Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-29794

Microsoft SharePoint Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-29796

Microsoft Edge for iOS ºýŪ·ì϶

µÍ

CVE-2025-29800

Microsoft AutoUpdate (MAU) ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29801

Microsoft AutoUpdate (MAU) ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29802

Visual Studio ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29803

Visual Studio Tools for Applications and SQL Server Management Studio Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-29804

Visual Studio ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29805

Android °æ Outlook ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-29808

Windows ¼ÓÃÜ·þÎñÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-29809

Windows Kerberos °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-29810

Active Directory Domain Services Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-29811

Windows Mobile ¿í´øÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29812

DirectX ͼÐÎÄÚºËÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-29815

»ùÓÚ Chromium µÄ Microsoft Edge Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-29816

Microsoft Word °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-29819

Azure ÃÅ»§ÖÐµÄ Windows Admin Center ÐÅϢй©·ì϶

³ÁÒª

CVE-2025-29820

Microsoft Word Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-29821

Microsoft Dynamics Business Central ÐÅÏ¢Åû¶·ì϶

³ÁÒª

CVE-2025-29822

Microsoft OneNote °²È«Ö°ÄÜÈƹý·ì϶

³ÁÒª

CVE-2025-29823

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-29824

Windows ͨÓÃÈÕÖ¾ÎļþϵͳÇý¶¯·¨Ê½ÌáÉýȨÏÞ·ì϶

³ÁÒª


¶þ¡¢Ó°ÏìÁìÓò


ÊÜÓ°ÏìµÄ²úÆ·/Ö°ÄÜ/·þÎñ/×é¼þÔ̺¬£º

Visual Studio Code

Windows Standards-Based Storage Management Service

Windows Local Security Authority (LSA)

Windows NTFS

Windows Routing and Remote Access Service (RRAS)

Windows Update Stack

Windows Telephony Service

Windows DWM Core Library

Microsoft Edge (Chromium-based)

Azure Local Cluster

Windows Hello

Windows BitLocker

Windows USB Print Driver

Windows Digital Media

Windows Cryptographic Services

Microsoft Office

Windows Kerberos

Windows Kernel

Windows Secure Channel

Windows Local Session Manager (LSM)

Windows LDAP - Lightweight Directory Access Protocol

Windows upnphost.dll

Windows Media

Windows Remote Desktop Services

Windows Subsystem for Linux

Windows Defender Application Control (WDAC)

RPC Endpoint Mapper Service

Windows Win32K - GRFX

ASP.NET Core

Windows TCP/IP

Microsoft Virtual Hard Drive

Microsoft Streaming Service

Windows Mark of the Web (MOTW)

Windows HTTP.sys

Remote Desktop Gateway Service

Windows Universal Plug and Play (UPnP) Device Host

Remote Desktop Client

Azure Local

Windows Bluetooth Service

Windows Hyper-V

Windows Installer

Windows Kernel-Mode Drivers

Windows Shell

OpenSSH for Windows

Windows Virtualization-Based Security (VBS) Enclave

Windows Power Dependency Coordinator

Windows Security Zone Mapping

Windows Resilient File System (ReFS)

Windows Active Directory Certificate Services

System Center

Microsoft Office Word

Microsoft Office Excel

Microsoft Office SharePoint

Microsoft Edge for iOS

Microsoft AutoUpdate (MAU)

Visual Studio

Visual Studio Tools for Applications and SQL Server Management Studio

Outlook for Android

Active Directory Domain Services

Windows Mobile Broadband

Windows Kernel Memory

Power Automate

Azure Portal Windows Admin Center

Dynamics Business Central

Microsoft Office OneNote

Windows Common Log File System Driver


Èý¡¢°²È«´ëÊ©


3.1 Éý¼¶°æ±¾


Ŀǰ΢ÈíÒÑ°ä²¼Óйذ²È«¸üУ¬½¨ÒéÊÜÓ°ÏìµÄÓû§¾¡¿ì½¨¸´¡£


£¨Ò»£© Windows Update×Ô¶¯¸üÐÂ


Microsoft UpdateĬÈÏÆôÓ㬵±ÏµÍ³¼ì²âµ½¿ÉÓøüÐÂʱ£¬½«»á×Ô¶¯ÏÂÔظüв¢±ÉÈËÒ»´ÎÆô¶¯Ê±×°Öá£Ò²¿ÉÑ¡Ôñͨ¹ýÒÔϲ½ÖèÊÖ¶¯½øÐиüУº


1¡¢µã»÷¡°ÆðÍ·²Ëµ¥¡±»ò°´Windows¿ì½Ý¼ü£¬µã»÷½øÈë¡°ÉèÖá±

2¡¢Ñ¡Ôñ¡°¸üкͰ²È«¡±£¬½øÈë¡°Windows¸üС±£¨Windows 8¡¢Windows 8.1¡¢Windows Server 2012ÒÔ¼°Windows Server 2012 R2¿Éͨ¹ý½ÚÔìÃæ°å½øÈë¡°Windows¸üС±£¬¾ßÌå²½ÖèΪ¡°½ÚÔìÃæ°å¡±->¡°ÏµÍ³ºÍ°²È«¡±->¡°Windows¸üС±£©

3¡¢Ñ¡Ôñ¡°²é³­¸üС±£¬ÆÚ´ýϵͳ×Ô¶¯²é³­²¢ÏÂÔØ¿ÉÓøüС£

4¡¢¸üÐÂʵÏÖºó³ÁÆôÍÆËã»ú£¬¿Éͨ¹ý½øÈë¡°Windows¸üС±->¡°²é¿´¸üк¹Çà¼Í¼¡±²é¿´ÊÇ·ñ³É¹¦×°ÖÃÁ˸üС£¶ÔÓÚûÓгɹ¦×°ÖõĸüУ¬Äܹ»µã»÷¸Ã¸üÐÂÃû³Æ½øÈë΢Èí¹Ù·½¸üÐÂÃèÊöÁ´½Ó£¬µã»÷×îеÄSSUÃû³Æ²¢ÔÚÐÂÁ´½ÓÖеã»÷¡°Microsoft ¸üÐÂĿ¼¡±£¬¶øºóÔÚÐÂÁ´½Óµ±Ñ¡ÔñºÏÓÃÓÚÖ¸±êϵͳµÄ²¹¶¡½øÐÐÏÂÔز¢×°Öá£


£¨¶þ£© ÊÖ¶¯×°ÖøüÐÂ


Microsoft¹Ù·½ÏÂÔØÏàÓ¦²¹¶¡½øÐиüС£


2025Äê4Ô°²È«¸üÐÂÏÂÔØÁ´½Ó£ºhttps://msrc.microsoft.com/update-guide/releaseNote/2025-Apr


²¹¶¡ÏÂÔØʾÀý£¨²Î¿¼£©£º


1.´ò¿ªÉÏÊöÏÂÔØÁ´½Ó£¬µã»÷·ì϶ÁбíÖÐÒª½¨¸´µÄCVEÁ´½Ó¡£

ͼƬ1.png

Àý1£ºÎ¢Èí·ì϶ÁÐ±í£¨Ê¾Àý£©


2.ÔÚ΢Èí²¼¸æÒ³Ãæµ×²¿×ó²à¡¾²úÆ·¡¿ÁÐÑ¡ÔñÏàÓ¦µÄϵͳÀàÐÍ£¬µã»÷ÓҲࡾÏÂÔØ¡¿Áдò¿ª²¹¶¡ÏÂÔØÁ´½Ó¡£


ͼƬ2.jpg

Àý2£ºCVE-2022-21989²¹¶¡ÏÂÔØʾÀý


3.µã»÷¡¾°²È«¸üС¿£¬´ò¿ª²¹¶¡ÏÂÔØÒ³Ã棬ÏÂÔØÏàÓ¦²¹¶¡²¢½øÐÐ×°Öá£


ͼƬ3.png

Àý3£º²¹¶¡ÏÂÔؽçÃæ


4.×°ÖÃʵÏÖºó³ÁÆôÍÆËã»ú¡£


3.2 Ò»Ê±´ëÊ©


ÔÝÎÞ¡£


3.3 ͨÓý¨Òé


? ¶¨ÆÚ¸üÐÂϵͳ²¹¶¡£¬Ï÷¼õϵͳ·ì϶£¬ÌáÉý·þÎñÆ÷µÄ°²È«ÐÔ¡£

¼ÓǿϵͳºÍÍøÂçµÄ½Ó¼û½ÚÔ죬Åú¸Ä·À»ðǽսÊõ£¬¹Ø¹Ø·Ç±ØÒªµÄÀûÓö˿ڻò·þÎñ£¬Ï÷¼õ½«Î£ÏÕ·þÎñ£¨ÈçSSH¡¢RDPµÈ£©Â¶³öµ½¹«Íø£¬Ï÷¼õ¹¥»÷Ãæ¡£

ʹÓÃÆóÒµ¼¶°²È«²úÆ·£¬ÌáÉýÆóÒµµÄÍøÂ簲ȫ»úÄÜ¡£

¼ÓǿϵͳÓû§ºÍȨÏÞÖÎÀí£¬ÆôÓöà³É·ÖÈÏÖ¤»úÔìºÍ×îÓ×ȨÏÞ×¼Ôò£¬Óû§ºÍÈí¼þȨÏÞӦά³ÖÔÚ×îµÍÏ޶ȡ£

ÆôÓÃÇ¿ÃÜÂëÕ½Êõ²¢ÉèÖÃΪ¶¨ÆÚÅú¸Ä¡£


3.4 ²Î¿¼Á´½Ó


https://msrc.microsoft.com/update-guide/releaseNote/2025-Apr