【資安漏洞預警】CISA新增2個已知遭駭客利用之漏洞至KEV目錄(2026/06/29-2026/07/05)
【Security Vulnerability Alert】CISA has added 2 known exploited vulnerabilities to the KEV catalog (2026/06/29-2026/07/05)

發布單位:圖資處數位服務組
日期範圍:2026/7/9 ~ 2027/1/9
 
發布單位:圖資處數位服務組
日期範圍:2026/7/9 ~ 2027/1/9
行政 行政公告
全體

轉發 台灣電腦網路危機處理暨協調中心 資安訊息警訊 TWCERTCC-200-202607-00000003

[內容說明]
【CVE-2026-48558】SimpleHelp Authentication Bypass Vulnerability (CVSS v3.1: 10.0)
【是否遭勒索軟體利用:未知】 SimpleHelp的OIDC驗證流程存在身分鑑別繞過漏洞。當系統啟用OIDC驗證時,登入過程未正確驗證身分權杖的加密簽章。遠端未經驗證的攻擊者可提交偽造權杖,藉此取得已完成身分驗證的技術人員工作階段;在部分組態下,甚至可能繞過多因子驗證。

【CVE-2026-45659】Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability (CVSS v3.1: 8.8)
【是否遭勒索軟體利用:未知】 Microsoft SharePoint Server 存在不受信任資料反序列化漏洞,允許經授權的攻擊者透過網路執行任意程式碼。

[影響平台]
【CVE-2026-48558】請參考官方所列的影響版本 https://simple-help.com/security/simplehelp-security-update-2026-05

【CVE-2026-45659】請參考官方所列的影響版本 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659

[建議措施]
【CVE-2026-48558】 官方已針對漏洞釋出修復更新,請更新至相關版本 https://simple-help.com/security/simplehelp-security-update-2026-05

【CVE-2026-45659】 官方已針對漏洞釋出修復更新,請更新至相關版本 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659

Forwarded Taiwan Computer Emergency Response Team / Coordination Center Security Advisory Alert TWCERTCC-200-202607-00000003

[Description]
【CVE-2026-48558】SimpleHelp Authentication Bypass Vulnerability (CVSS v3.1: 10.0)
【Whether exploited by ransomware: unknown】 There is an authentication bypass vulnerability in the OIDC authentication process of SimpleHelp. When OIDC authentication is enabled in the system, the login process does not properly verify the cryptographic signature of the identity token. Remote unauthenticated attackers can submit forged tokens to obtain an authenticated technician session; in some configurations, it may even bypass multi-factor authentication.

【CVE-2026-45659】Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: unknown】 Microsoft SharePoint Server has a deserialization of untrusted data vulnerability, allowing authenticated attackers to execute arbitrary code over the network.

[Affected Platform]
【CVE-2026-48558】Please refer to the affected versions listed by the official https://simple-help.com/security/simplehelp-security-update-2026-05

【CVE-2026-45659】Please refer to the affected versions listed by the official https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659

[Recommendations]
【CVE-2026-48558】 The official has released fixes for the vulnerability. Please update to the relevant versions https://simple-help.com/security/simplehelp-security-update-2026-05

【CVE-2026-45659】 The official has released fixes for the vulnerability. Please update to the relevant versions https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659


相關附件
※為降低附件原始檔案遭搜尋引擎索引之風險,公告附件將由瀏覽器先下載至本機暫存後再開啟。請確認使用環境安全後,再決定是否開啟附件。
Top↑