CVE-2026-32191

Critical CVSS: 9.8

Improper neutralization of special elements used in an os command ('os command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.

Vendor

Product

CWE

CWE-78

Yayın Tarihi

2026-03-19 21:17:10

Güncelleme

2026-03-20 13:39:46

Source Identifier

secure@microsoft.com

KEV Date Added

Kategoriler

CWE-78 CRITICAL 2026

Referanslar

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32191