本頁列出影響 microsoft powershell 的已公開 CVE 漏洞(透過 NVD CPE 關聯)。每列包含嚴重程度評分、摘要與發布日期,便於識別與分析安全議題。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2026-26171 | Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network. | [email protected] | 7.5 | 3.08% | 2026-04-14 | 2026-05-07 |
| CVE-2026-26143 | Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally. | [email protected] | 7.8 | 0.10% | 2026-04-14 | 2026-04-27 |
| CVE-2025-25004 | Improper access control in Microsoft PowerShell allows an authorized attacker to elevate privileges locally. | [email protected] | 7.3 | 0.04% | 2025-10-14 | 2025-10-20 |
| CVE-2025-49734 | Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate privileges locally. | [email protected] | 7.0 | 0.05% | 2025-09-09 | 2025-10-02 |
| CVE-2025-30399 | Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network. | [email protected] | 7.5 | 0.21% | 2025-06-13 | 2025-07-10 |
| CVE-2025-21171 | .NET Remote Code Execution Vulnerability | [email protected] | 7.5 | 0.82% | 2025-01-14 | 2025-07-10 |
| CVE-2024-30045 | .NET and Visual Studio Remote Code Execution Vulnerability | [email protected] | 6.3 | 0.51% | 2024-05-14 | 2025-01-08 |
| CVE-2024-21409 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | [email protected] | 7.3 | 57.62% | 2024-04-09 | 2025-01-17 |
| CVE-2024-26190 | Microsoft QUIC Denial of Service Vulnerability | [email protected] | 7.5 | 0.91% | 2024-03-12 | 2024-12-27 |
| CVE-2024-21392 | .NET and Visual Studio Denial of Service Vulnerability | [email protected] | 7.5 | 0.75% | 2024-03-12 | 2024-11-29 |
| CVE-2024-0057 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | [email protected] | 9.1 | 3.64% | 2024-01-09 | 2024-11-21 |
| CVE-2023-36013 | PowerShell Information Disclosure Vulnerability | [email protected] | 6.5 | 2.49% | 2023-11-20 | 2024-11-21 |
| CVE-2023-21538 | .NET Denial of Service Vulnerability | [email protected] | 7.5 | 1.12% | 2023-01-10 | 2024-11-21 |
| CVE-2022-41121 | Windows Graphics Component Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.53% | 2022-12-13 | 2025-07-07 |
| CVE-2022-41076 | PowerShell Remote Code Execution Vulnerability | [email protected] | 8.5 | 34.02% | 2022-12-13 | 2025-01-02 |
| CVE-2022-34716 | .NET Spoofing Vulnerability | [email protected] | 5.9 | 0.76% | 2022-08-09 | 2025-05-29 |
| CVE-2022-23267 | .NET and Visual Studio Denial of Service Vulnerability | [email protected] | 7.5 | 6.42% | 2022-05-10 | 2025-01-02 |
| CVE-2022-26788 | PowerShell Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.40% | 2022-04-15 | 2024-11-21 |
| CVE-2022-24512 | .NET and Visual Studio Remote Code Execution Vulnerability | [email protected] | 6.3 | 0.25% | 2022-03-09 | 2026-05-27 |
| CVE-2021-43896 | Microsoft PowerShell Spoofing Vulnerability | [email protected] | 5.5 | 7.59% | 2021-12-15 | 2024-11-21 |