Microsoft's March 2026 Patch Tuesday addresses 67 취약점 including 4 actively 익스플로잇ed zero-days affecting Windows kernel, NTFS, and Microsoft Management Console. Immediate patching critical.
Microsoft's March 2026 Patch Tuesday resolves 67 취약점 across Windows, Office, Azure, and .NET. Four of these are actively 익스플로잇ed zero-days that require immediate attention.
CISA has added all four to the Known 악용 Vulnerabilities (KEV) catalog. Federal agencies must patch within 21 days; all 조직은 해야 합니다 treat as emergency.
| CVE | Component | CVSS | 영향 |
|---|---|---|---|
| CVE-2026-24983 | Windows Win32 Kernel Subsystem | 7.8 | Elevation of Privilege — local attacker gains SYSTEM |
| CVE-2026-24984 | Windows NTFS | 4.6 | Information Disclosure — sensitive data via USB |
| CVE-2026-24985 | Windows Fast FAT File System | 6.8 | 원격 코드 실행(RCE) via malicious VHD |
| CVE-2026-24993 | Microsoft Management Console | 7.8 | 원격 코드 실행(RCE) via crafted .msc file |
A use-after-free 취약점 in the Win32 kernel subsystem allows a local attacker to escalate privileges to SYSTEM. This is being used as part of post-compromise chains — once an attacker has 초기 접근, they 익스플로잇 이 취약점은 to gain full system control.
While lower severity, this NTFS flaw allows an attacker with physical access to read heap memory via a crafted USB device. This has been observed targeting high-value individuals in espionage campaigns.
A maliciously crafted VHD file triggers a heap-based 버퍼 오버플로 in the Fast FAT driver. Simply mounting the file can execute arbitrary code. Attack vector: email attachments or compromised file shares.
A specially crafted .msc file sent via email or hosted on a malicious website can execute arbitrary code when opened. 소셜 엔지니어링 is the primary delivery mechanism — attackers send these as "IT admin tools" or "system configuration files."
| Severity | Count |
|---|---|
| 치명적 | 7 |
| Important | 57 |
| Moderate | 3 |
AI-powered 취약점 management with 331,910+ CVEs indexed.
Start Free Trial안전하게. 경계하며.
🗡️ KENSAI 보안팀