CVE-2026-32194

Critical CVSS: 9.8

Improper neutralization of special elements used in a command ('command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.

Vendor

Product

CWE

CWE-77

Yayın Tarihi

2026-03-19 22:16:41

Güncelleme

2026-03-20 13:39:46

Source Identifier

secure@microsoft.com

KEV Date Added

Kategoriler

CWE-77 CRITICAL 2026

Referanslar

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32194