內容說明：

微軟Windows存在多個漏洞，其中較嚴重者包含：
1..NET Core存在安全漏洞漏洞(CVE-2021-26701)允許攻擊者遠端執行任意程式碼。
2.Windows Win32k存在安全漏洞漏洞(CVE-2021-1732)攻擊者可利用此漏洞進行權限提升。

影響平台：

1.CVE-2021-26701:
.NET 5.0
.NET Core 3.1
.NET Core 2.1
2.CVE-2021-1732:
Windows Server, version 20H2 (Server Core Installation)
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 Version 20H2 for x64-based Systems
Windows Server, version 2004 (Server Core installation)
Windows 10 Version 2004 for x64-based Systems
Windows 10 Version 2004 for ARM64-based Systems
Windows 10 Version 2004 for 32-bit Systems
Windows Server, version 1909 (Server Core installation)
Windows 10 Version 1909 for ARM64-based Systems
Windows 10 Version 1909 for x64-based Systems
Windows 10 Version 1909 for 32-bit Systems
Windows Server 2019  (Server Core installation)
Windows Server 2019
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1803 for 32-bit Systems

處置建議：

目前官方已針對弱點釋出修復版本，請各機關聯絡設備維護廠商更新，參考連結：
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26701
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1732
 

CVE編號：

CVE-2021-26701
CVE-2021-1732

參考資料：

1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26701
2. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1732
3. https://www.ithome.com.tw/news/142716