三星產品多個漏洞

發佈日期: 2026年06月03日

風險: 中度風險

類型: 操作系統 - 流動裝置及操作系統

於三星產品發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發阻斷服務狀況、權限提升、遠端執行任意程式碼及洩露敏感資料。

---

影響

• 阻斷服務
• 遠端執行程式碼
• 權限提升
• 資料洩露

---

受影響之系統或技術

• 運行 Android  14, 15, 16 的三星產品
• Exynos 850, 1080, 1280, 1330, 1380, 1480, 1580, 1680, 2100, 2200, 2400, 2500, 2600, Modem 5410
• Exynos Auto 8890, V7, V9, V920
• Exynos W920, W930, W1000

有關受影響產品，請參閱以下連結:

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/

---

解決方案

在安裝軟件之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

安裝軟件供應商提供的修補程式：

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-53922/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23786/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23787/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23788/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23789/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23790/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23791/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23793/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33956/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33960/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33963/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33964/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33966/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33967/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33968/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33970/

---

漏洞識別碼

• CVE-2024-53922
• CVE-2025-26418
• CVE-2025-40214
• CVE-2025-48581
• CVE-2025-48612
• CVE-2025-48648
• CVE-2025-59605
• CVE-2025-59606
• CVE-2026-0009
• CVE-2026-0054
• CVE-2026-0060
• CVE-2026-0091
• CVE-2026-0093
• CVE-2026-0094
• CVE-2026-0095
• CVE-2026-0096
• CVE-2026-0097
• CVE-2026-0098
• CVE-2026-0099
• CVE-2026-0100
• CVE-2026-20435
• CVE-2026-20453
• CVE-2026-20454
• CVE-2026-20455
• CVE-2026-21017
• CVE-2026-21025
• CVE-2026-21026
• CVE-2026-21027
• CVE-2026-21028
• CVE-2026-21029
• CVE-2026-21030
• CVE-2026-21031
• CVE-2026-21352
• CVE-2026-21353
• CVE-2026-23786
• CVE-2026-23787
• CVE-2026-23788
• CVE-2026-23789
• CVE-2026-23790
• CVE-2026-23791
• CVE-2026-23793
• CVE-2026-25276
• CVE-2026-25277
• CVE-2026-28573
• CVE-2026-28574
• CVE-2026-28577
• CVE-2026-28578
• CVE-2026-28580
• CVE-2026-28581
• CVE-2026-28586
• CVE-2026-33956
• CVE-2026-33960
• CVE-2026-33963
• CVE-2026-33964
• CVE-2026-33966
• CVE-2026-33967
• CVE-2026-33968
• CVE-2026-33970

---

資料來源

• Samsung

---

相關連結

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-53922/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23786/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23787/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23788/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23789/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23790/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23791/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23793/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33956/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33960/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33963/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33964/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33966/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33967/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33968/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33970/

Samsung Products Multiple Vulnerabilities

Release Date: 3 Jun 2026

RISK: Medium Risk

TYPE: Operating Systems - Mobile & Apps

Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.

---

Impact

• Denial of Service
• Remote Code Execution
• Elevation of Privilege
• Information Disclosure

---

System / Technologies affected

• Samsung mobile devices running Android 14, 15, 16
• Exynos 850, 1080, 1280, 1330, 1380, 1480, 1580, 1680, 2100, 2200, 2400, 2500, 2600, Modem 5410
• Exynos Auto 8890, V7, V9, V920
• Exynos W920, W930, W1000

For affected products, please refer to the link below:

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/

---

Solutions

Before installation of the software, please visit the vendor website for more details.

 

Apply fixes issued by the vendor:

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-53922/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23786/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23787/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23788/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23789/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23790/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23791/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23793/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33956/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33960/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33963/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33964/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33966/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33967/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33968/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33970/

---

Vulnerability Identifier

• CVE-2024-53922
• CVE-2025-26418
• CVE-2025-40214
• CVE-2025-48581
• CVE-2025-48612
• CVE-2025-48648
• CVE-2025-59605
• CVE-2025-59606
• CVE-2026-0009
• CVE-2026-0054
• CVE-2026-0060
• CVE-2026-0091
• CVE-2026-0093
• CVE-2026-0094
• CVE-2026-0095
• CVE-2026-0096
• CVE-2026-0097
• CVE-2026-0098
• CVE-2026-0099
• CVE-2026-0100
• CVE-2026-20435
• CVE-2026-20453
• CVE-2026-20454
• CVE-2026-20455
• CVE-2026-21017
• CVE-2026-21025
• CVE-2026-21026
• CVE-2026-21027
• CVE-2026-21028
• CVE-2026-21029
• CVE-2026-21030
• CVE-2026-21031
• CVE-2026-21352
• CVE-2026-21353
• CVE-2026-23786
• CVE-2026-23787
• CVE-2026-23788
• CVE-2026-23789
• CVE-2026-23790
• CVE-2026-23791
• CVE-2026-23793
• CVE-2026-25276
• CVE-2026-25277
• CVE-2026-28573
• CVE-2026-28574
• CVE-2026-28577
• CVE-2026-28578
• CVE-2026-28580
• CVE-2026-28581
• CVE-2026-28586
• CVE-2026-33956
• CVE-2026-33960
• CVE-2026-33963
• CVE-2026-33964
• CVE-2026-33966
• CVE-2026-33967
• CVE-2026-33968
• CVE-2026-33970

---

Source

• Samsung

---

Related Link

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-53922/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23786/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23787/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23788/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23789/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23790/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23791/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-23793/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33956/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33960/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33963/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33964/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33966/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33967/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33968/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2026-33970/

Android 多個漏洞

發佈日期: 2026年06月02日

風險: 中度風險

類型: 操作系統 - 流動裝置及操作系統

於 Android 發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發阻斷服務狀況、權限提升、遠端執行任意程式碼及洩露敏感資料。

 

注意：

CVE-2025-48595 正被利用作零星攻擊。該漏洞可導致權限提升，而無需額外的執行權限。利用該漏洞無需用戶互動。因此，該漏洞的風險等級被評為中度風險。

---

影響

• 阻斷服務
• 遠端執行程式碼
• 權限提升
• 資料洩露

---

受影響之系統或技術

• 2026-06-01 前的 Android 保安更新級別

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

• 安裝軟件供應商提供的修補程式：
  https://source.android.com/docs/security/bulletin/2026/2026-06-01

---

漏洞識別碼

• CVE-2025-22424
• CVE-2025-22426
• CVE-2025-26418
• CVE-2025-32348
• CVE-2025-40214
• CVE-2025-47384
• CVE-2025-47392
• CVE-2025-47400
• CVE-2025-47401
• CVE-2025-47403
• CVE-2025-48570
• CVE-2025-48581
• CVE-2025-48595
• CVE-2025-48600
• CVE-2025-48612
• CVE-2025-48615
• CVE-2025-48616
• CVE-2025-48648
• CVE-2025-48649
• CVE-2025-48652
• CVE-2025-59604
• CVE-2025-59605
• CVE-2025-59606
• CVE-2025-64505
• CVE-2025-64720
• CVE-2025-65018
• CVE-2025-71251
• CVE-2025-71252
• CVE-2025-71253
• CVE-2025-71254
• CVE-2025-71255
• CVE-2025-71256
• CVE-2026-0009
• CVE-2026-0016
• CVE-2026-0018
• CVE-2026-0036
• CVE-2026-0039
• CVE-2026-0040
• CVE-2026-0041
• CVE-2026-0042
• CVE-2026-0043
• CVE-2026-0044
• CVE-2026-0045
• CVE-2026-0046
• CVE-2026-0048
• CVE-2026-0050
• CVE-2026-0051
• CVE-2026-0052
• CVE-2026-0055
• CVE-2026-0056
• CVE-2026-0059
• CVE-2026-0060
• CVE-2026-0061
• CVE-2026-0067
• CVE-2026-0069
• CVE-2026-0070
• CVE-2026-0074
• CVE-2026-0075
• CVE-2026-0076
• CVE-2026-0077
• CVE-2026-0078
• CVE-2026-0079
• CVE-2026-0080
• CVE-2026-0085
• CVE-2026-0086
• CVE-2026-0087
• CVE-2026-0088
• CVE-2026-0089
• CVE-2026-0091
• CVE-2026-0093
• CVE-2026-0094
• CVE-2026-0095
• CVE-2026-0096
• CVE-2026-0097
• CVE-2026-0098
• CVE-2026-0099
• CVE-2026-0100
• CVE-2026-20431
• CVE-2026-20432
• CVE-2026-20433
• CVE-2026-20435
• CVE-2026-20447
• CVE-2026-20448
• CVE-2026-20449
• CVE-2026-20450
• CVE-2026-20453
• CVE-2026-20454
• CVE-2026-20455
• CVE-2026-21352
• CVE-2026-21353
• CVE-2026-21367
• CVE-2026-21372
• CVE-2026-21373
• CVE-2026-21374
• CVE-2026-21375
• CVE-2026-21376
• CVE-2026-21378
• CVE-2026-21380
• CVE-2026-21381
• CVE-2026-21538
• CVE-2026-21539
• CVE-2026-21540
• CVE-2026-21541
• CVE-2026-21542
• CVE-2026-21543
• CVE-2026-21544
• CVE-2026-21545
• CVE-2026-21546
• CVE-2026-21547
• CVE-2026-21736
• CVE-2026-22163
• CVE-2026-22167
• CVE-2026-24085
• CVE-2026-24089
• CVE-2026-25276
• CVE-2026-25277
• CVE-2026-28574
• CVE-2026-28577
• CVE-2026-28578
• CVE-2026-28580
• CVE-2026-28581
• CVE-2026-28586

---

資料來源

• Android

---

相關連結

• https://source.android.com/docs/security/bulletin/2026/2026-06-01

Android Multiple Vulnerabilities

Release Date: 2 Jun 2026

RISK: Medium Risk

TYPE: Operating Systems - Mobile & Apps

Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.

 

Note:

CVE-2025-48595 is being scattered exploited. This vulnerability could lead to escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Hence, the risk level is rated as Medium Risk.

---

Impact

• Denial of Service
• Remote Code Execution
• Elevation of Privilege
• Information Disclosure

---

System / Technologies affected

• Android security patch level prior to 2026-06-01

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

• Apply fixes issued by the vendor:
  https://source.android.com/docs/security/bulletin/2026/2026-06-01

---

Vulnerability Identifier

• CVE-2025-22424
• CVE-2025-22426
• CVE-2025-26418
• CVE-2025-32348
• CVE-2025-40214
• CVE-2025-47384
• CVE-2025-47392
• CVE-2025-47400
• CVE-2025-47401
• CVE-2025-47403
• CVE-2025-48570
• CVE-2025-48581
• CVE-2025-48595
• CVE-2025-48600
• CVE-2025-48612
• CVE-2025-48615
• CVE-2025-48616
• CVE-2025-48648
• CVE-2025-48649
• CVE-2025-48652
• CVE-2025-59604
• CVE-2025-59605
• CVE-2025-59606
• CVE-2025-64505
• CVE-2025-64720
• CVE-2025-65018
• CVE-2025-71251
• CVE-2025-71252
• CVE-2025-71253
• CVE-2025-71254
• CVE-2025-71255
• CVE-2025-71256
• CVE-2026-0009
• CVE-2026-0016
• CVE-2026-0018
• CVE-2026-0036
• CVE-2026-0039
• CVE-2026-0040
• CVE-2026-0041
• CVE-2026-0042
• CVE-2026-0043
• CVE-2026-0044
• CVE-2026-0045
• CVE-2026-0046
• CVE-2026-0048
• CVE-2026-0050
• CVE-2026-0051
• CVE-2026-0052
• CVE-2026-0055
• CVE-2026-0056
• CVE-2026-0059
• CVE-2026-0060
• CVE-2026-0061
• CVE-2026-0067
• CVE-2026-0069
• CVE-2026-0070
• CVE-2026-0074
• CVE-2026-0075
• CVE-2026-0076
• CVE-2026-0077
• CVE-2026-0078
• CVE-2026-0079
• CVE-2026-0080
• CVE-2026-0085
• CVE-2026-0086
• CVE-2026-0087
• CVE-2026-0088
• CVE-2026-0089
• CVE-2026-0091
• CVE-2026-0093
• CVE-2026-0094
• CVE-2026-0095
• CVE-2026-0096
• CVE-2026-0097
• CVE-2026-0098
• CVE-2026-0099
• CVE-2026-0100
• CVE-2026-20431
• CVE-2026-20432
• CVE-2026-20433
• CVE-2026-20435
• CVE-2026-20447
• CVE-2026-20448
• CVE-2026-20449
• CVE-2026-20450
• CVE-2026-20453
• CVE-2026-20454
• CVE-2026-20455
• CVE-2026-21352
• CVE-2026-21353
• CVE-2026-21367
• CVE-2026-21372
• CVE-2026-21373
• CVE-2026-21374
• CVE-2026-21375
• CVE-2026-21376
• CVE-2026-21378
• CVE-2026-21380
• CVE-2026-21381
• CVE-2026-21538
• CVE-2026-21539
• CVE-2026-21540
• CVE-2026-21541
• CVE-2026-21542
• CVE-2026-21543
• CVE-2026-21544
• CVE-2026-21545
• CVE-2026-21546
• CVE-2026-21547
• CVE-2026-21736
• CVE-2026-22163
• CVE-2026-22167
• CVE-2026-24085
• CVE-2026-24089
• CVE-2026-25276
• CVE-2026-25277
• CVE-2026-28574
• CVE-2026-28577
• CVE-2026-28578
• CVE-2026-28580
• CVE-2026-28581
• CVE-2026-28586

---

Source

• Android

---

Related Link

• https://source.android.com/docs/security/bulletin/2026/2026-06-01

IBM WebSphere 產品多個漏洞

發佈日期: 2026年06月02日

風險: 中度風險

類型: 伺服器 - 互聯網應用伺服器

於 IBM WebSphere 產品發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發彷冒、遠端執行任意程式碼及繞過保安限制。

---

影響

• 遠端執行程式碼
• 繞過保安限制
• 仿冒

---

受影響之系統或技術

• IBM WebSphere Application Server - 8.5
• IBM WebSphere Application Server - 9.0

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

安裝供應商提供的修補程式：

• https://www.ibm.com/support/pages/node/7274733
• https://www.ibm.com/support/pages/node/7274738
• https://www.ibm.com/support/pages/node/7274740

---

漏洞識別碼

• CVE-2026-8644
• CVE-2026-9311
• CVE-2026-9319
• CVE-2026-9330

---

資料來源

• IBM

---

相關連結

• https://www.ibm.com/support/pages/node/7274733
• https://www.ibm.com/support/pages/node/7274738
• https://www.ibm.com/support/pages/node/7274740

IBM WebSphere Products Multiple Vulnerabilities

Release Date: 2 Jun 2026

RISK: Medium Risk

TYPE: Servers - Internet App Servers

Multiple vulnerabilities were identified in IBM WebSphere Products. A remote attacker could exploit some of these vulnerabilities to trigger spoofing, remote code execution and security restriction bypass on the targeted system.

---

Impact

• Remote Code Execution
• Security Restriction Bypass
• Spoofing

---

System / Technologies affected

• IBM WebSphere Application Server - 8.5
• IBM WebSphere Application Server - 9.0

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.ibm.com/support/pages/node/7274733
• https://www.ibm.com/support/pages/node/7274738
• https://www.ibm.com/support/pages/node/7274740

---

Vulnerability Identifier

• CVE-2026-8644
• CVE-2026-9311
• CVE-2026-9319
• CVE-2026-9330

---

Source

• IBM

---

Related Link

• https://www.ibm.com/support/pages/node/7274733
• https://www.ibm.com/support/pages/node/7274738
• https://www.ibm.com/support/pages/node/7274740

Ubuntu Linux 核心多個漏洞

發佈日期: 2026年06月02日

風險: 中度風險

類型: 操作系統 - LINUX

於 Ubuntu Linux 核心發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發阻斷服務狀況、權限提升及繞過保安限制。

---

影響

• 阻斷服務
• 權限提升
• 繞過保安限制

---

受影響之系統或技術

• Ubuntu 14.04 LTS
• Ubuntu 22.04 LTS
• Ubuntu 24.04 LTS

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

安裝供應商提供的修補程式：

• https://ubuntu.com/security/notices/USN-8350-1
• https://ubuntu.com/security/notices/USN-8351-1
• https://ubuntu.com/security/notices/USN-8361-1

---

漏洞識別碼

• CVE-2026-31419
• CVE-2026-31431
• CVE-2026-31504
• CVE-2026-31533
• CVE-2026-43033
• CVE-2026-43077
• CVE-2026-43078
• CVE-2026-46028

---

資料來源

• Ubuntu

---

相關連結

• https://ubuntu.com/security/notices/USN-8350-1
• https://ubuntu.com/security/notices/USN-8351-1
• https://ubuntu.com/security/notices/USN-8361-1

Ubuntu Linux Kernel Multiple Vulnerabilities

Release Date: 2 Jun 2026

RISK: Medium Risk

TYPE: Operating Systems - Linux

Multiple vulnerabilities were identified in Ubuntu Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege and security restriction bypass on the targeted system.

---

Impact

• Denial of Service
• Elevation of Privilege
• Security Restriction Bypass

---

System / Technologies affected

• Ubuntu 14.04 LTS
• Ubuntu 22.04 LTS
• Ubuntu 24.04 LTS

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://ubuntu.com/security/notices/USN-8350-1
• https://ubuntu.com/security/notices/USN-8351-1
• https://ubuntu.com/security/notices/USN-8361-1

---

Vulnerability Identifier

• CVE-2026-31419
• CVE-2026-31431
• CVE-2026-31504
• CVE-2026-31533
• CVE-2026-43033
• CVE-2026-43077
• CVE-2026-43078
• CVE-2026-46028

---

Source

• Ubuntu

---

Related Link

• https://ubuntu.com/security/notices/USN-8350-1
• https://ubuntu.com/security/notices/USN-8351-1
• https://ubuntu.com/security/notices/USN-8361-1

RedHat Linux 核心多個漏洞

發佈日期: 2026年06月02日

風險: 中度風險

類型: 操作系統 - LINUX

於 RedHat Linux核心發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發阻斷服務狀況、遠端執行任意程式碼、資料篡改及繞過保安限制。

---

影響

• 阻斷服務
• 遠端執行程式碼
• 繞過保安限制
• 篡改

---

受影響之系統或技術

• Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 aarch64
• Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 s390x
• Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 ppc64le
• Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0 x86_64
• Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64
• Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64
• Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64
• Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x
• Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x
• Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x
• Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le
• Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le
• Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64
• Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
• Red Hat OpenShift Container Platform 4.17 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform 4.17 for RHEL 9 x86_64
• Red Hat OpenShift Container Platform for ARM 64 4.17 for RHEL 8 aarch64
• Red Hat OpenShift Container Platform for ARM 64 4.17 for RHEL 9 aarch64
• Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.17 for RHEL 8 s390x
• Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.17 for RHEL 9 s390x
• Red Hat OpenShift Container Platform for Power 4.17 for RHEL 8 ppc64le
• Red Hat OpenShift Container Platform for Power 4.17 for RHEL 9 ppc64le

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

安裝供應商提供的修補程式：

• https://access.redhat.com/errata/RHSA-2026:0701
• https://access.redhat.com/errata/RHSA-2026:22147
• https://access.redhat.com/errata/RHSA-2026:22334

---

漏洞識別碼

• CVE-2024-56547
• CVE-2025-11234
• CVE-2025-31133
• CVE-2025-39766
• CVE-2025-52565
• CVE-2025-52881
• CVE-2026-23210
• CVE-2026-31419
• CVE-2026-43163

---

資料來源

• Redhat

---

相關連結

• https://access.redhat.com/errata/RHSA-2026:0701
• https://access.redhat.com/errata/RHSA-2026:22147
• https://access.redhat.com/errata/RHSA-2026:22334

RedHat Linux Kernel Multiple Vulnerabilities

Release Date: 2 Jun 2026

RISK: Medium Risk

TYPE: Operating Systems - Linux

Multiple vulnerabilities were identified in RedHat Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, data manipulation and security restriction bypass on the targeted system.

---

Impact

• Denial of Service
• Remote Code Execution
• Security Restriction Bypass
• Data Manipulation

---

System / Technologies affected

• Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 aarch64
• Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 s390x
• Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 ppc64le
• Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0 x86_64
• Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64
• Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64
• Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64
• Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x
• Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x
• Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x
• Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le
• Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le
• Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64
• Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
• Red Hat OpenShift Container Platform 4.17 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform 4.17 for RHEL 9 x86_64
• Red Hat OpenShift Container Platform for ARM 64 4.17 for RHEL 8 aarch64
• Red Hat OpenShift Container Platform for ARM 64 4.17 for RHEL 9 aarch64
• Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.17 for RHEL 8 s390x
• Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.17 for RHEL 9 s390x
• Red Hat OpenShift Container Platform for Power 4.17 for RHEL 8 ppc64le
• Red Hat OpenShift Container Platform for Power 4.17 for RHEL 9 ppc64le

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://access.redhat.com/errata/RHSA-2026:0701
• https://access.redhat.com/errata/RHSA-2026:22147
• https://access.redhat.com/errata/RHSA-2026:22334

---

Vulnerability Identifier

• CVE-2024-56547
• CVE-2025-11234
• CVE-2025-31133
• CVE-2025-39766
• CVE-2025-52565
• CVE-2025-52881
• CVE-2026-23210
• CVE-2026-31419
• CVE-2026-43163

---

Source

• Redhat

---

Related Link

• https://access.redhat.com/errata/RHSA-2026:0701
• https://access.redhat.com/errata/RHSA-2026:22147
• https://access.redhat.com/errata/RHSA-2026:22334

SUSE Linux 內核多個漏洞

發佈日期: 2026年06月01日

風險: 中度風險

類型: 操作系統 - LINUX

於 SUSE Linux 內核發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發跨網站指令碼、阻斷服務狀況、權限提升、繞過保安限制、敏感資料洩露、遠端執行任意程式碼及資料篡改。

---

影響

• 阻斷服務
• 遠端執行程式碼
• 繞過保安限制
• 權限提升
• 篡改
• 資料洩露
• 跨網站指令碼

---

受影響之系統或技術

• SUSE Linux Enterprise Micro 5.3
• SUSE Linux Enterprise Micro 5.4
• SUSE Linux Enterprise Micro for Rancher 5.3
• SUSE Linux Enterprise Micro for Rancher 5.4
• SUSE Linux Micro 6.2
• SUSE Linux Micro Extras 6.2

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

安裝供應商提供的修補程式：

• https://www.suse.com/support/update/announcement/2026/suse-su-20262111-1
• https://www.suse.com/support/update/announcement/2026/suse-su-202621834-1
• https://www.suse.com/support/update/announcement/2026/suse-su-202621841-1

---

漏洞識別碼

• CVE-2021-47103
• CVE-2023-2058
• CVE-2023-20585
• CVE-2024-14027
• CVE-2025-40181
• CVE-2025-40219
• CVE-2025-54518
• CVE-2025-68265
• CVE-2025-68310
• CVE-2025-71238
• CVE-2025-71268
• CVE-2025-71269
• CVE-2025-71302
• CVE-2026-23168
• CVE-2026-23209
• CVE-2026-23236
• CVE-2026-23237
• CVE-2026-23239
• CVE-2026-23240
• CVE-2026-23245
• CVE-2026-23246
• CVE-2026-23253
• CVE-2026-23260
• CVE-2026-23261
• CVE-2026-23264
• CVE-2026-23266
• CVE-2026-23268
• CVE-2026-23269
• CVE-2026-23271
• CVE-2026-23273
• CVE-2026-23276
• CVE-2026-23279
• CVE-2026-23290
• CVE-2026-23291
• CVE-2026-23298
• CVE-2026-23300
• CVE-2026-23307
• CVE-2026-23312
• CVE-2026-23313
• CVE-2026-23315
• CVE-2026-23316
• CVE-2026-23317
• CVE-2026-23318
• CVE-2026-23321
• CVE-2026-23324
• CVE-2026-23325
• CVE-2026-23334
• CVE-2026-23336
• CVE-2026-23339
• CVE-2026-23340
• CVE-2026-23346
• CVE-2026-23347
• CVE-2026-23351
• CVE-2026-23354
• CVE-2026-23357
• CVE-2026-23360
• CVE-2026-23362
• CVE-2026-23363
• CVE-2026-23365
• CVE-2026-23367
• CVE-2026-23368
• CVE-2026-23369
• CVE-2026-23370
• CVE-2026-23372
• CVE-2026-23373
• CVE-2026-23374
• CVE-2026-23375
• CVE-2026-23378
• CVE-2026-23382
• CVE-2026-23387
• CVE-2026-23391
• CVE-2026-23392
• CVE-2026-23393
• CVE-2026-23395
• CVE-2026-23396
• CVE-2026-23397
• CVE-2026-23399
• CVE-2026-23401
• CVE-2026-23403
• CVE-2026-23404
• CVE-2026-23405
• CVE-2026-23406
• CVE-2026-23407
• CVE-2026-23408
• CVE-2026-23409
• CVE-2026-23410
• CVE-2026-23411
• CVE-2026-23417
• CVE-2026-23418
• CVE-2026-23420
• CVE-2026-23426
• CVE-2026-23434
• CVE-2026-23436
• CVE-2026-23437
• CVE-2026-23440
• CVE-2026-23441
• CVE-2026-23442
• CVE-2026-23443
• CVE-2026-23445
• CVE-2026-23446
• CVE-2026-23447
• CVE-2026-23448
• CVE-2026-23449
• CVE-2026-23450
• CVE-2026-23452
• CVE-2026-23454
• CVE-2026-23455
• CVE-2026-23456
• CVE-2026-23457
• CVE-2026-23458
• CVE-2026-23460
• CVE-2026-23461
• CVE-2026-23462
• CVE-2026-23463
• CVE-2026-23464
• CVE-2026-23465
• CVE-2026-23466
• CVE-2026-23468
• CVE-2026-23470
• CVE-2026-23472
• CVE-2026-23473
• CVE-2026-23474
• CVE-2026-23475
• CVE-2026-31389
• CVE-2026-31392
• CVE-2026-31393
• CVE-2026-31394
• CVE-2026-31395
• CVE-2026-31400
• CVE-2026-31402
• CVE-2026-31403
• CVE-2026-31405
• CVE-2026-31406
• CVE-2026-31407
• CVE-2026-31408
• CVE-2026-31411
• CVE-2026-31412
• CVE-2026-31415
• CVE-2026-31416
• CVE-2026-31417
• CVE-2026-31420
• CVE-2026-31421
• CVE-2026-31422
• CVE-2026-31423
• CVE-2026-31424
• CVE-2026-31425
• CVE-2026-31426
• CVE-2026-31427
• CVE-2026-31428
• CVE-2026-31435
• CVE-2026-31436
• CVE-2026-31449
• CVE-2026-31453
• CVE-2026-31456
• CVE-2026-31470
• CVE-2026-31494
• CVE-2026-31496
• CVE-2026-31503
• CVE-2026-31504
• CVE-2026-31505
• CVE-2026-31507
• CVE-2026-31512
• CVE-2026-31515
• CVE-2026-31519
• CVE-2026-31525
• CVE-2026-31526
• CVE-2026-31528
• CVE-2026-31533
• CVE-2026-31547
• CVE-2026-31550
• CVE-2026-31554
• CVE-2026-31565
• CVE-2026-31570
• CVE-2026-31579
• CVE-2026-31586
• CVE-2026-31588
• CVE-2026-31602
• CVE-2026-31607
• CVE-2026-31644
• CVE-2026-31649
• CVE-2026-31656
• CVE-2026-31658
• CVE-2026-31662
• CVE-2026-31666
• CVE-2026-31668
• CVE-2026-31669
• CVE-2026-31675
• CVE-2026-31678
• CVE-2026-31679
• CVE-2026-31681
• CVE-2026-31682
• CVE-2026-31684
• CVE-2026-31685
• CVE-2026-31691
• CVE-2026-31694
• CVE-2026-31700
• CVE-2026-31738
• CVE-2026-31787
• CVE-2026-43009
• CVE-2026-43025
• CVE-2026-43027
• CVE-2026-43037
• CVE-2026-43038
• CVE-2026-43045
• CVE-2026-43050
• CVE-2026-43060
• CVE-2026-43082
• CVE-2026-43088
• CVE-2026-43110
• CVE-2026-43126
• CVE-2026-43153
• CVE-2026-43190
• CVE-2026-43214
• CVE-2026-43265
• CVE-2026-43329
• CVE-2026-43334
• CVE-2026-43365
• CVE-2026-43366
• CVE-2026-43437
• CVE-2026-43441
• CVE-2026-43494
• CVE-2026-43500
• CVE-2026-43503
• CVE-2026-46300
• CVE-2026-46333

---

資料來源

• SUSE

---

相關連結

• https://www.suse.com/support/update/announcement/2026/suse-su-20262111-1
• https://www.suse.com/support/update/announcement/2026/suse-su-202621834-1
• https://www.suse.com/support/update/announcement/2026/suse-su-202621841-1