A.I. 보안관제 365, 아이온시큐리티

강병탁 AI스페라 대표, “AI 시대 보안은 ‘운영’... 에이전트 CTEM 출격”

관리자

2026-05-15 00:14:50

강병탁 AI스페라 대표, “AI 시대 보안은 ‘운영’... 에이전트 CTEM 출격”

관리자

2026-05-15 00:14:50

보안 동향 브리핑

SECURITY
DAILY REPORT

Eyeon Security

생성일시: 2026-05-15 00:07

보안뉴스 (신규 5건)

강병탁 AI스페라 대표, “AI 시대 보안은 ‘운영’... 에이전트 CTEM 출격”

수집일: 2026-05-15

“미토스 대응? 기술 앞서 문화 개선부터”“중소기업 보안 미흡, 대기업 보안까지 위협”[보안뉴스 강현주 기자] “AI 위협 대응은 발견된 취약점을 실제 조치로 빠르게 연결하는 ‘운영’ 체계 마련이 우선입니다. AI 시대 공격표면관리(ASM)의 다음 단계는 지속적 위협노출관리(CTEM)에 AI 에이전트를 접목한 ‘AI TEM’입니다.”강병탁 AI스페라 대표

원문 바로가기 →

이번엔 마이크로소프트... 새 AI 보안 시스템 MDASH, 취약점 탐지 성적 미토스 넘어

수집일: 2026-05-15

100개 이상 특화 에이전트 조율해 취약점 탐지... 비공개 프리뷰로 공개[보안뉴스 한세희 기자] 마이크로소프트가 100개 이상의 인공지능(AI) 에이전트를 연결해 취약점을 찾아내는 AI 보안 시스템 ‘MDASH’를 공개했다. 벤치마크 테스트에서 앤트로픽 ‘미토스’나 오픈AI GPT-5.5를 앞서는 결과를 냈다. MDASH는 ‘Multi-moDel Agen

원문 바로가기 →

AI 에이전트 시대의 보안... 팔로알토, 아이덴티티 보안 플랫폼 ‘이디라’(Idira) 출시

수집일: 2026-05-15

인간, 기계, 자율형 AI 에이전트 아우르는 차세대 아이덴티티 보안 플랫폼 이디라(Idira) 공개사이버아크(CyberArk) 전문성 결합, 특권접근관리(PAM) 기술 동적 확장 구현[보안뉴스 조재호 기자] 기계와 AI 아이덴티티(Identity)가 인간보다 109배 많아진 2026년, 사이버 공격자들은 시스템을 파괴하는 대신 정상 신원을 도용해 ‘로그인’

원문 바로가기 →

SK쉴더스 “중소기업 해킹 인지까지 106.1일... 야간 틈탄 랜섬웨어 기승”

수집일: 2026-05-15

최근 5년간 중소·중견기업 대상 사이버 침해사고 실태최초 침투 후 조사 착수까지 평균 106.1일 소요, 방어 골든타임 상실전체 사고 47.4% 제조업에 집중... 24시간 상시 대응 위한 MDR 도입 필요해[보안뉴스 조재호 기자] 보안 인력과 인프라가 상대적으로 부족한 중소·중견기업을 겨냥한 사이버 공격이 갈수록 고도화되며 기업 비즈니스 연속성을 심각하게

원문 바로가기 →

SKT, 해킹 후 CPO 관리·감독 강화... 사고 기업들 이행 결과 발표

수집일: 2026-05-15

개인정보위, 2025년 하반기 시정명령 이행점검[보안뉴스 강현주 기자] SK텔레콤(SKT)이 대규모 개인정보 유출 사고 후 개인정보보호책임자(CPO)의 관리·감독을 강화하는 등 개선 권고를 적극적으로 이행했다. 개인정보보호위원회(위원장 송경희)는 개인정보 보호법 위반으로 시정명령(권고), 개선권고를 처분한 조직들의 이행점검 결과를 14일 발표했다. 개인정보

원문 바로가기 →

KISA 보안공지 (신규 2건)

MS 5월 보안 위협에 따른 정기 보안 업데이트 권고

수집일: 2026-05-15

□ 5월 보안업데이트 개요 (총 16 종)
o 등급 : 긴급 (Critical) 12 종 , 중요 (Important) 4 종
o 발표일 : 2026.05.12.(화)
o 업데이트 내용

제품군	중요도	영향
Windows 11 v26H1	긴급	권한 상승
Windows 11 v25H2	긴급	권한 상승
Windows 11 v24H2	긴급	권한 상승
Windows 11 v23H2	긴급	권한 상승
Windows Server 2025, Windows Server 2025(Server Core 설치)	긴급	권한 상승
Windows Server 2022 23H2 버전(Server Core 설치), Windows Server 2022, Windows Server 2022(Server Core 설치)	긴급	권한 상승
Windows Server 2019	긴급	권한 상승
Windows Server 2016	긴급	권한 상승
Windows Admin Center	중요	권한 상승
Microsoft Office	긴급	원격 코드 실행
Microsoft SharePoint	긴급	원격 코드 실행
Microsoft .NET	중요	권한 상승
Microsoft Visual Studio	중요	보안 기능 우회
Microsoft Dynamics 365	긴급	원격 코드 실행
Microsoft SQL Server	중요	원격 코드 실행
Microsoft Azure	긴급	권한 상승

[참고 사이트]
[1] (한글) https://msrc.microsoft.com/update-guide/ko-kr/
[2] (영문) https://msrc.microsoft.com/update-guide/en-us/
[3] https://msrc.microsoft.com/update-guide/releaseNote/2026-May

o 취약점 요약 정보 (총 265개)

제품 카테고리	CVE 번호	CVE 제목
Windows 서식 있는 텍스트 편집	CVE-2026-21530	Windows Rich Text Edit Remote Code Execution Vulnerability
M365 Copilot	CVE-2026-26129	M365 Copilot Information Disclosure Vulnerability
M365 Copilot	CVE-2026-26164	M365 Copilot Information Disclosure Vulnerability
Windows 네이티브 WiFi 미니포트 드라이버	CVE-2026-32161	Windows Native WiFi Miniport Driver Remote Code Execution Vulnerability
Windows 서식 있는 텍스트 편집 컨트롤	CVE-2026-32170	Windows Rich Text Edit Control Remote Code Execution Vulnerability
.NET	CVE-2026-32175	.NET Information Disclosure Vulnerability
.NET	CVE-2026-32177	.NET Remote Code Execution Vulnerability
Microsoft Teams	CVE-2026-32185	Microsoft Teams Information Disclosure Vulnerability
Azure Monitor 에이전트	CVE-2026-32204	Azure Monitor Agent Elevation of Privilege Vulnerability
Azure Machine Learning	CVE-2026-32207	Azure Machine Learning Remote Code Execution Vulnerability
Windows 필터링 플랫폼(WFP)	CVE-2026-32209	Windows Filtering Platform (WFP) Information Disclosure Vulnerability
Azure Managed Instance for Apache Cassandra	CVE-2026-33109	Azure Managed Instance for Apache Cassandra Elevation of Privilege Vulnerability
Microsoft Office SharePoint	CVE-2026-33110	Microsoft Office SharePoint Remote Code Execution Vulnerability
Copilot Chat(Microsoft Edge)	CVE-2026-33111	Copilot Chat in Microsoft Edge Information Disclosure Vulnerability
Microsoft Office SharePoint	CVE-2026-33112	Microsoft Office SharePoint Remote Code Execution Vulnerability
Azure SDK	CVE-2026-33117	Azure SDK Elevation of Privilege Vulnerability
Microsoft Dynamics 365 Customer Insights	CVE-2026-33821	Microsoft Dynamics 365 Customer Insights Elevation of Privilege Vulnerability
Microsoft Teams	CVE-2026-33823	Microsoft Teams Elevation of Privilege Vulnerability
Azure Machine Learning	CVE-2026-33833	Azure Machine Learning Spoofing Vulnerability
Windows 이벤트 로그 서비스	CVE-2026-33834	Windows Event Logging Service Elevation of Privilege Vulnerability
Windows 클라우드 파일 미니 필터 드라이버	CVE-2026-33835	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows TCP/IP	CVE-2026-33837	Windows TCP/IP Elevation of Privilege Vulnerability
Windows 메시지 큐	CVE-2026-33838	Windows Message Queuing Elevation of Privilege Vulnerability
Windows Win32K - GRFX	CVE-2026-33839	Windows Win32K - GRFX Elevation of Privilege Vulnerability
Windows Win32K - ICOMP	CVE-2026-33840	Windows Win32K - ICOMP Elevation of Privilege Vulnerability
Windows 커널	CVE-2026-33841	Windows Kernel Elevation of Privilege Vulnerability
Azure Managed Instance for Apache Cassandra	CVE-2026-33844	Azure Managed Instance for Apache Cassandra Elevation of Privilege Vulnerability
Microsoft 파트너 센터	CVE-2026-34327	Microsoft Partner Center Information Disclosure Vulnerability
Windows 메시지 큐	CVE-2026-34329	Windows Message Queuing Remote Code Execution Vulnerability
Windows Win32K - GRFX	CVE-2026-34330	Windows Win32K - GRFX Elevation of Privilege Vulnerability
Windows Win32K - GRFX	CVE-2026-34331	Windows Win32K - GRFX Elevation of Privilege Vulnerability
Windows 커널 모드 드라이버	CVE-2026-34332	Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Windows Win32K - GRFX	CVE-2026-34333	Windows Win32K - GRFX Elevation of Privilege Vulnerability
Windows TCP/IP	CVE-2026-34334	Windows TCP/IP Elevation of Privilege Vulnerability
Windows DWM 핵심 라이브러리	CVE-2026-34336	Windows DWM Core Library Elevation of Privilege Vulnerability
Windows 클라우드 파일 미니 필터 드라이버	CVE-2026-34337	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows 전화 통신 서비스	CVE-2026-34338	Windows Telephony Service Elevation of Privilege Vulnerability
Windows LDAP - Lightweight Directory Access Protocol	CVE-2026-34339	Windows LDAP - Lightweight Directory Access Protocol Denial of Service Vulnerability
Windows 예상 파일 시스템	CVE-2026-34340	Windows Projected File System Elevation of Privilege Vulnerability
Windows Link-Layer Discovery Protocol(LLDP)	CVE-2026-34341	Windows Link-Layer Discovery Protocol (LLDP) Elevation of Privilege Vulnerability
Windows 인쇄 스풀러 구성 요소	CVE-2026-34342	Windows Print Spooler Components Elevation of Privilege Vulnerability
Windows 애플리케이션 ID(AppID) 하위 시스템	CVE-2026-34343	Windows Application ID (AppID) Subsystem Elevation of Privilege Vulnerability
WinSock용 Windows 보조 기능 드라이버	CVE-2026-34344	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
WinSock용 Windows 보조 기능 드라이버	CVE-2026-34345	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Windows Win32K - GRFX	CVE-2026-34347	Windows Win32K - GRFX Elevation of Privilege Vulnerability
Windows Storport 미니포트 드라이버	CVE-2026-34350	Windows Storport Miniport Driver Denial of Service Vulnerability
Windows TCP/IP	CVE-2026-34351	Windows TCP/IP Elevation of Privilege Vulnerability
Windows 저장소 공간 컨트롤러	CVE-2026-35415	Windows Storage Spaces Controller Elevation of Privilege Vulnerability
WinSock용 Windows 보조 기능 드라이버	CVE-2026-35416	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Windows Win32K - ICOMP	CVE-2026-35417	Windows Win32K - ICOMP Elevation of Privilege Vulnerability
Windows 클라우드 파일 미니 필터 드라이버	CVE-2026-35418	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows DWM 핵심 라이브러리	CVE-2026-35419	Windows DWM Core Library Information Disclosure Vulnerability
Windows 커널	CVE-2026-35420	Windows Kernel Elevation of Privilege Vulnerability
Windows GDI	CVE-2026-35421	Windows GDI Remote Code Execution Vulnerability
Windows TCP/IP	CVE-2026-35422	Windows TCP/IP Tampering Vulnerability
텔넷 클라이언트	CVE-2026-35423	Telnet Client Spoofing Vulnerability
Windows IKE(Internet Key Exchange) 프로토콜	CVE-2026-35424	Windows Internet Key Exchange (IKE) Protocol Denial of Service Vulnerability
Azure Cloud Shell	CVE-2026-35428	Azure Cloud Shell Elevation of Privilege Vulnerability
Android용 Microsoft Edge	CVE-2026-35429	Microsoft Edge for Android Spoofing Vulnerability
.NET	CVE-2026-35433	.NET Remote Code Execution Vulnerability
Azure AI Foundry M365 게시된 에이전트	CVE-2026-35435	Azure AI Foundry M365 Published Agent Information Disclosure Vulnerability
Microsoft Office 간편 실행	CVE-2026-35436	Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Windows 관리 센터	CVE-2026-35438	Windows Admin Center Elevation of Privilege Vulnerability
Microsoft Office SharePoint	CVE-2026-35439	Microsoft Office SharePoint Remote Code Execution Vulnerability
Microsoft Office Word	CVE-2026-35440	Microsoft Office Word Information Disclosure Vulnerability
Microsoft Office SharePoint	CVE-2026-40357	Microsoft Office SharePoint Remote Code Execution Vulnerability
Microsoft Office	CVE-2026-40358	Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Excel	CVE-2026-40359	Microsoft Office Excel Remote Code Execution Vulnerability
Microsoft Office Excel	CVE-2026-40360	Microsoft Office Excel Remote Code Execution Vulnerability
Microsoft Office Word	CVE-2026-40361	Microsoft Office Word Remote Code Execution Vulnerability
Microsoft Office Excel	CVE-2026-40362	Microsoft Office Excel Remote Code Execution Vulnerability
Microsoft Office	CVE-2026-40363	Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Word	CVE-2026-40364	Microsoft Office Word Remote Code Execution Vulnerability
Microsoft Office SharePoint	CVE-2026-40365	Microsoft Office SharePoint Remote Code Execution Vulnerability
Microsoft Office Word	CVE-2026-40366	Microsoft Office Word Remote Code Execution Vulnerability
Microsoft Office Word	CVE-2026-40367	Microsoft Office Word Remote Code Execution Vulnerability
Microsoft Office SharePoint	CVE-2026-40368	Microsoft Office SharePoint Remote Code Execution Vulnerability
Windows 커널	CVE-2026-40369	Windows Kernel Elevation of Privilege Vulnerability
SQL Server	CVE-2026-40370	SQL Server Remote Code Execution Vulnerability
Power Automate	CVE-2026-40374	Power Automate Information Disclosure Vulnerability
Windows 암호화 서비스	CVE-2026-40377	Windows Cryptographic Services Elevation of Privilege Vulnerability
Azure Entra ID	CVE-2026-40379	Azure Entra ID Elevation of Privilege Vulnerability
Windows 볼륨 관리자 확장 드라이버	CVE-2026-40380	Windows Volume Manager Extension Driver Elevation of Privilege Vulnerability
Azure Connected Machine Agent	CVE-2026-40381	Azure Connected Machine Agent Elevation of Privilege Vulnerability
Windows 전화 통신 서비스	CVE-2026-40382	Windows Telephony Service Elevation of Privilege Vulnerability
Windows 공용 로그 파일 시스템 드라이버	CVE-2026-40397	Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows 원격 데스크톱	CVE-2026-40398	Windows Remote Desktop Services Elevation of Privilege Vulnerability
Windows TCP/IP	CVE-2026-40399	Windows TCP/IP Elevation of Privilege Vulnerability
Windows TCP/IP	CVE-2026-40401	Windows TCP/IP Denial of Service Vulnerability
Windows Hyper-V	CVE-2026-40402	Windows Hyper-V Elevation of Privilege Vulnerability
Windows Win32K - GRFX	CVE-2026-40403	Windows Win32K - GRFX Remote Code Execution Vulnerability
Windows TCP/IP	CVE-2026-40405	Windows TCP/IP Denial of Service Vulnerability
Windows TCP/IP	CVE-2026-40406	Windows TCP/IP Information Disclosure Vulnerability
Windows 공용 로그 파일 시스템 드라이버	CVE-2026-40407	Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows 커널 모드 드라이버	CVE-2026-40408	Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Windows SMB 클라이언트	CVE-2026-40410	Windows SMB Client Elevation of Privilege Vulnerability
Windows TCP/IP	CVE-2026-40413	Windows TCP/IP Denial of Service Vulnerability
Windows TCP/IP	CVE-2026-40414	Windows TCP/IP Denial of Service Vulnerability
Windows TCP/IP	CVE-2026-40415	Windows TCP/IP Remote Code Execution Vulnerability
Microsoft Edge(Chromium 기반)	CVE-2026-40416	Microsoft Edge (Chromium-based) Spoofing Vulnerability
Dynamics Business Central	CVE-2026-40417	Dynamics Business Central Elevation of Privilege Vulnerability
Microsoft Office 간편 실행	CVE-2026-40418	Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Microsoft Office	CVE-2026-40419	Microsoft Office Elevation of Privilege Vulnerability
Microsoft Office 간편 실행	CVE-2026-40420	Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Microsoft Office Word	CVE-2026-40421	Microsoft Office Word Information Disclosure Vulnerability
Windows 관리 센터	CVE-2026-41086	Windows Admin Center Elevation of Privilege Vulnerability
WinSock용 Windows 보조 기능 드라이버	CVE-2026-41088	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Windows Netlogon	CVE-2026-41089	Windows Netlogon Remote Code Execution Vulnerability
Microsoft Data Formulator	CVE-2026-41094	Microsoft Data Formulator Remote Code Execution Vulnerability
Windows 예상 파일 시스템	CVE-2026-41095	Windows Projected File System Elevation of Privilege Vulnerability
Microsoft Windows DNS	CVE-2026-41096	Microsoft Windows DNS Remote Code Execution Vulnerability
Windows 보안 부팅	CVE-2026-41097	Windows Secure Boot Security Feature Bypass Vulnerability
M365 Copilot	CVE-2026-41100	M365 Copilot Information Disclosure Vulnerability
Microsoft Office Word	CVE-2026-41101	Microsoft Office Word Remote Code Execution Vulnerability
Microsoft Office PowerPoint	CVE-2026-41102	Microsoft Office PowerPoint Remote Code Execution Vulnerability
Jira 및 Confluence용 Microsoft SSO 플러그인	CVE-2026-41103	Microsoft SSO Plugin for Jira and Confluence Elevation of Privilege Vulnerability
Azure 알림 서비스	CVE-2026-41105	Azure Notification Service Elevation of Privilege Vulnerability
Microsoft Edge(Chromium 기반)	CVE-2026-41107	Microsoft Edge (Chromium-based) Spoofing Vulnerability
GitHub Copilot 및 Visual Studio	CVE-2026-41109	GitHub Copilot and Visual Studio Remote Code Execution Vulnerability
Visual Studio Code	CVE-2026-41610	Visual Studio Code Information Disclosure Vulnerability
Visual Studio Code	CVE-2026-41611	Visual Studio Code Remote Code Execution Vulnerability
Visual Studio Code	CVE-2026-41612	Visual Studio Code Information Disclosure Vulnerability
Visual Studio Code	CVE-2026-41613	Visual Studio Code Remote Code Execution Vulnerability
데스크톱용 M365 Copilot	CVE-2026-41614	M365 Copilot for Desktop Information Disclosure Vulnerability
Azure Logic Apps	CVE-2026-42823	Azure Logic Apps Elevation of Privilege Vulnerability
Windows 전화 통신 서비스	CVE-2026-42825	Windows Telephony Service Elevation of Privilege Vulnerability
Azure DevOps	CVE-2026-42826	Azure DevOps Elevation of Privilege Vulnerability
Azure Monitor 에이전트	CVE-2026-42830	Azure Monitor Agent Tampering Vulnerability
Android용 Office	CVE-2026-42831	Microsoft Office for Android Remote Code Execution Vulnerability
Microsoft Office Excel	CVE-2026-42832	Microsoft Office Excel Information Disclosure Vulnerability
Microsoft Dynamics 365(온-프레미스)	CVE-2026-42833	Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability
Microsoft Edge(Chromium 기반)	CVE-2026-42838	Microsoft Edge (Chromium-based) Spoofing Vulnerability
Microsoft Edge(Chromium 기반)	CVE-2026-42891	Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
M365 Copilot	CVE-2026-42893	M365 Copilot Tampering Vulnerability
Windows DWM 핵심 라이브러리	CVE-2026-42896	Windows DWM Core Library Elevation of Privilege Vulnerability
Microsoft Dynamics 365(온-프레미스)	CVE-2026-42898	Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability
ASP.NET	CVE-2026-42899	ASP.NET Denial of Service Vulnerability
AMD CPU Branch	CVE-2025-54518	AMD CPU OP Cache Corruption Vulnerability
Microsoft Edge(Chromium 기반)	CVE-2026-7896	Integer overflow in Blink
Microsoft Edge(Chromium 기반)	CVE-2026-7897	Use after free in Mobile
Microsoft Edge(Chromium 기반)	CVE-2026-7898	Use after free in Chromoting
Microsoft Edge(Chromium 기반)	CVE-2026-7899	Out of bounds read and write in V8
Microsoft Edge(Chromium 기반)	CVE-2026-7900	Heap buffer overflow in ANGLE
Microsoft Edge(Chromium 기반)	CVE-2026-7901	Use after free in ANGLE
Microsoft Edge(Chromium 기반)	CVE-2026-7902	Out of bounds memory access in V8
Microsoft Edge(Chromium 기반)	CVE-2026-7903	Integer overflow in ANGLE
Microsoft Edge(Chromium 기반)	CVE-2026-7904	Out of bounds read in Fonts
Microsoft Edge(Chromium 기반)	CVE-2026-7905	Insufficient validation of untrusted input in Media
Microsoft Edge(Chromium 기반)	CVE-2026-7906	Use after free in SVG
Microsoft Edge(Chromium 기반)	CVE-2026-7907	Use after free in DOM
Microsoft Edge(Chromium 기반)	CVE-2026-7908	Use after free in Fullscreen
Microsoft Edge(Chromium 기반)	CVE-2026-7909	Inappropriate implementation in ServiceWorker
Microsoft Edge(Chromium 기반)	CVE-2026-7910	Use after free in Views
Microsoft Edge(Chromium 기반)	CVE-2026-7911	Use after free in Aura
Microsoft Edge(Chromium 기반)	CVE-2026-7912	Integer overflow in GPU
Microsoft Edge(Chromium 기반)	CVE-2026-7913	Insufficient policy enforcement in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-7914	Type Confusion in Accessibility
Microsoft Edge(Chromium 기반)	CVE-2026-7915	Insufficient data validation in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-7916	Insufficient data validation in InterestGroups
Microsoft Edge(Chromium 기반)	CVE-2026-7917	Use after free in Fullscreen
Microsoft Edge(Chromium 기반)	CVE-2026-7918	Use after free in GPU
Microsoft Edge(Chromium 기반)	CVE-2026-7919	Use after free in Aura
Microsoft Edge(Chromium 기반)	CVE-2026-7920	Use after free in Skia
Microsoft Edge(Chromium 기반)	CVE-2026-7921	Use after free in Passwords
Microsoft Edge(Chromium 기반)	CVE-2026-7922	Use after free in ServiceWorker
Microsoft Edge(Chromium 기반)	CVE-2026-7923	Out of bounds write in Skia
Microsoft Edge(Chromium 기반)	CVE-2026-7924	Uninitialized Use in Dawn
Microsoft Edge(Chromium 기반)	CVE-2026-7925	Use after free in Chromoting
Microsoft Edge(Chromium 기반)	CVE-2026-7926	Use after free in PresentationAPI
Microsoft Edge(Chromium 기반)	CVE-2026-7927	Type Confusion in Runtime
Microsoft Edge(Chromium 기반)	CVE-2026-7928	Use after free in WebRTC
Microsoft Edge(Chromium 기반)	CVE-2026-7929	Use after free in MediaRecording
Microsoft Edge(Chromium 기반)	CVE-2026-7930	Insufficient validation of untrusted input in Cookies
Microsoft Edge(Chromium 기반)	CVE-2026-7931	Insufficient validation of untrusted input in iOS
Microsoft Edge(Chromium 기반)	CVE-2026-7932	Insufficient policy enforcement in Downloads
Microsoft Edge(Chromium 기반)	CVE-2026-7933	Out of bounds read in WebCodecs
Microsoft Edge(Chromium 기반)	CVE-2026-7934	Insufficient validation of untrusted input in Popup Blocker
Microsoft Edge(Chromium 기반)	CVE-2026-7935	Inappropriate implementation in Speech
Microsoft Edge(Chromium 기반)	CVE-2026-7936	Object lifecycle issue in V8
Microsoft Edge(Chromium 기반)	CVE-2026-7937	Insufficient policy enforcement in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-7938	Use after free in CSS
Microsoft Edge(Chromium 기반)	CVE-2026-7939	Inappropriate implementation in SanitizerAPI
Microsoft Edge(Chromium 기반)	CVE-2026-7940	Use after free in V8
Microsoft Edge(Chromium 기반)	CVE-2026-7941	Insufficient validation of untrusted input in Mobile
Microsoft Edge(Chromium 기반)	CVE-2026-7942	Integer overflow in ANGLE
Microsoft Edge(Chromium 기반)	CVE-2026-7943	Insufficient validation of untrusted input in ANGLE
Microsoft Edge(Chromium 기반)	CVE-2026-7944	Insufficient validation of untrusted input in Persistent Cache
Microsoft Edge(Chromium 기반)	CVE-2026-7945	Insufficient validation of untrusted input in COOP
Microsoft Edge(Chromium 기반)	CVE-2026-7946	Insufficient policy enforcement in WebUI
Microsoft Edge(Chromium 기반)	CVE-2026-7947	Insufficient validation of untrusted input in Network
Microsoft Edge(Chromium 기반)	CVE-2026-7948	Race in Chromoting
Microsoft Edge(Chromium 기반)	CVE-2026-7949	Out of bounds read in Skia
Microsoft Edge(Chromium 기반)	CVE-2026-7950	Out of bounds read and write in GFX
Microsoft Edge(Chromium 기반)	CVE-2026-7951	Out of bounds write in WebRTC
Microsoft Edge(Chromium 기반)	CVE-2026-7952	Insufficient policy enforcement in Extensions
Microsoft Edge(Chromium 기반)	CVE-2026-7953	Insufficient validation of untrusted input in Omnibox
Microsoft Edge(Chromium 기반)	CVE-2026-7954	Race in Shared Storage
Microsoft Edge(Chromium 기반)	CVE-2026-7955	Uninitialized Use in GPU
Microsoft Edge(Chromium 기반)	CVE-2026-7956	Use after free in Navigation
Microsoft Edge(Chromium 기반)	CVE-2026-7957	Out of bounds write in Media
Microsoft Edge(Chromium 기반)	CVE-2026-7958	Inappropriate implementation in ServiceWorker
Microsoft Edge(Chromium 기반)	CVE-2026-7959	Inappropriate implementation in Navigation
Microsoft Edge(Chromium 기반)	CVE-2026-7960	Race in Speech
Microsoft Edge(Chromium 기반)	CVE-2026-7961	Insufficient validation of untrusted input in Permissions
Microsoft Edge(Chromium 기반)	CVE-2026-7962	Insufficient policy enforcement in DirectSockets
Microsoft Edge(Chromium 기반)	CVE-2026-7963	Inappropriate implementation in ServiceWorker
Microsoft Edge(Chromium 기반)	CVE-2026-7964	Insufficient validation of untrusted input in FileSystem
Microsoft Edge(Chromium 기반)	CVE-2026-7965	Insufficient validation of untrusted input in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-7966	Insufficient validation of untrusted input in SiteIsolation
Microsoft Edge(Chromium 기반)	CVE-2026-7967	Insufficient validation of untrusted input in Navigation
Microsoft Edge(Chromium 기반)	CVE-2026-7968	Insufficient validation of untrusted input in CORS
Microsoft Edge(Chromium 기반)	CVE-2026-7969	Integer overflow in Network
Microsoft Edge(Chromium 기반)	CVE-2026-7970	Use after free in TopChrome
Microsoft Edge(Chromium 기반)	CVE-2026-7971	Inappropriate implementation in ORB
Microsoft Edge(Chromium 기반)	CVE-2026-7972	Uninitialized Use in GPU
Microsoft Edge(Chromium 기반)	CVE-2026-7973	Integer overflow in Dawn
Microsoft Edge(Chromium 기반)	CVE-2026-7974	Use after free in Blink
Microsoft Edge(Chromium 기반)	CVE-2026-7975	Use after free in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-7976	Use after free in Views
Microsoft Edge(Chromium 기반)	CVE-2026-7977	Inappropriate implementation in Canvas
Microsoft Edge(Chromium 기반)	CVE-2026-7978	Inappropriate implementation in Companion
Microsoft Edge(Chromium 기반)	CVE-2026-7979	Inappropriate implementation in Media
Microsoft Edge(Chromium 기반)	CVE-2026-7980	Use after free in WebAudio
Microsoft Edge(Chromium 기반)	CVE-2026-7981	Out of bounds read in Codecs
Microsoft Edge(Chromium 기반)	CVE-2026-7982	Uninitialized Use in WebCodecs
Microsoft Edge(Chromium 기반)	CVE-2026-7983	Out of bounds read in Dawn
Microsoft Edge(Chromium 기반)	CVE-2026-7984	Use after free in ReadingMode
Microsoft Edge(Chromium 기반)	CVE-2026-7985	Use after free in GPU
Microsoft Edge(Chromium 기반)	CVE-2026-7986	Insufficient policy enforcement in Autofill
Microsoft Edge(Chromium 기반)	CVE-2026-7987	Use after free in WebRTC
Microsoft Edge(Chromium 기반)	CVE-2026-7988	Type Confusion in WebRTC
Microsoft Edge(Chromium 기반)	CVE-2026-7989	Insufficient data validation in DataTransfer
Microsoft Edge(Chromium 기반)	CVE-2026-7990	Insufficient validation of untrusted input in Updater
Microsoft Edge(Chromium 기반)	CVE-2026-7991	Use after free in UI
Microsoft Edge(Chromium 기반)	CVE-2026-7992	Insufficient validation of untrusted input in UI
Microsoft Edge(Chromium 기반)	CVE-2026-7993	Insufficient validation of untrusted input in Payments
Microsoft Edge(Chromium 기반)	CVE-2026-7994	Inappropriate implementation in Chromoting
Microsoft Edge(Chromium 기반)	CVE-2026-7995	Out of bounds read in AdFilter
Microsoft Edge(Chromium 기반)	CVE-2026-7996	Insufficient validation of untrusted input in SSL
Microsoft Edge(Chromium 기반)	CVE-2026-7997	Insufficient validation of untrusted input in Updater
Microsoft Edge(Chromium 기반)	CVE-2026-7998	Insufficient validation of untrusted input in Dialog
Microsoft Edge(Chromium 기반)	CVE-2026-7999	Inappropriate implementation in V8
Microsoft Edge(Chromium 기반)	CVE-2026-8000	Insufficient validation of untrusted input in ChromeDriver
Microsoft Edge(Chromium 기반)	CVE-2026-8001	Use after free in Printing
Microsoft Edge(Chromium 기반)	CVE-2026-8002	Use after free in Audio
Microsoft Edge(Chromium 기반)	CVE-2026-8003	Insufficient validation of untrusted input in TabGroups
Microsoft Edge(Chromium 기반)	CVE-2026-8004	Insufficient policy enforcement in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-8005	Insufficient validation of untrusted input in Cast
Microsoft Edge(Chromium 기반)	CVE-2026-8006	Insufficient policy enforcement in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-8007	Insufficient validation of untrusted input in Cast
Microsoft Edge(Chromium 기반)	CVE-2026-8008	Inappropriate implementation in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-8009	Inappropriate implementation in Cast
Microsoft Edge(Chromium 기반)	CVE-2026-8010	Insufficient validation of untrusted input in SiteIsolation
Microsoft Edge(Chromium 기반)	CVE-2026-8011	Insufficient policy enforcement in Search
Microsoft Edge(Chromium 기반)	CVE-2026-8012	Inappropriate implementation in MHTML
Microsoft Edge(Chromium 기반)	CVE-2026-8013	Insufficient validation of untrusted input in FedCM
Microsoft Edge(Chromium 기반)	CVE-2026-8014	Inappropriate implementation in Preload
Microsoft Edge(Chromium 기반)	CVE-2026-8015	Inappropriate implementation in Media
Microsoft Edge(Chromium 기반)	CVE-2026-8016	Use after free in WebRTC
Microsoft Edge(Chromium 기반)	CVE-2026-8017	Side-channel information leakage in Media
Microsoft Edge(Chromium 기반)	CVE-2026-8018	Insufficient policy enforcement in DevTools
Microsoft Edge(Chromium 기반)	CVE-2026-8019	Insufficient policy enforcement in WebApp
Microsoft Edge(Chromium 기반)	CVE-2026-8020	Uninitialized Use in GPU
Microsoft Edge(Chromium 기반)	CVE-2026-8021	Script injection in UI
Microsoft Edge(Chromium 기반)	CVE-2026-8022	Inappropriate implementation in MHTML

□ 작성 : 위협대응단 AI취약점대응팀

원문 바로가기 →

Linux Kernel 보안 업데이트 권고

수집일: 2026-05-15

□ 개요
o Linux Kernel에서 발생하는 취약점을 해결한 보안 업데이트 발표 [1]~[10]
o 영향을 받는 버전을 사용 중인 사용자는 해결 방안에 따라 최신 버전으로 업데이트 권고

□ 설명
o Linux Kernel에서 발생하는 Write-what-where Condition 취약점(CVE-2026-43284) [1]~[7][11]
o Linux Kernel에서 발생하는 Out-of-bounds Write 취약점(CVE-2026-43500) [8]~[10][12]

□ 영향을 받는 제품 및 해결 방안

취약점	제품명	영향받는 버전	해결 버전
CVE-2026-43284	Linux Kernel	7.0 이상 7.0.5 미만	7.0.5 이상
CVE-2026-43284	Linux Kernel	6.13 이상 6.18.28 미만	6.18.28 이상
CVE-2026-43284	Linux Kernel	6.7 이상 6.12.87 미만	6.12.87 이상
CVE-2026-43284	Linux Kernel	6.2 이상 6.6.138 미만	6.6.138 이상
CVE-2026-43284	Linux Kernel	5.16 이상 6.1.171 미만	6.1.171 이상
CVE-2026-43284	Linux Kernel	5.12 이상 5.15.205 미만	5.15.205 이상
CVE-2026-43284	Linux Kernel	4.11 이상 5.10.255 미만	5.10.255 이상
CVE-2026-43500	Linux Kernel	6.19 이상 7.0.6 미만	7.0.6 이상
CVE-2026-43500	Linux Kernel	5.3 이상 6.18.29 미만	6.18.29 이상

※ 하단의 참고 사이트를 확인하여 업데이트 수행 [1]~[10]

□ 문의사항
o 한국인터넷진흥원 사이버민원센터 : 국번없이 118

□ 작성 : 위협대응단 AI취약점대응팀

원문 바로가기 →

본 메일은 시스템에 의해 자동으로 수집 및 발송된 보안 동향 모니터링 리포트입니다.

첨부 파일 :