{"id":4983,"date":"2026-02-11T11:47:05","date_gmt":"2026-02-11T16:47:05","guid":{"rendered":"https:\/\/cert.pa\/?p=4983"},"modified":"2026-02-11T11:47:07","modified_gmt":"2026-02-11T16:47:07","slug":"csirt-panama-aviso-2026-feb-11-actualizaciones-de-seguridad-de-microsoft-para-febrero-2026","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=4983","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2026-Feb-11 Actualizaciones de seguridad de Microsoft para Febrero 2026."},"content":{"rendered":"\n

CSIRT Panam\u00e1 Aviso 2026-Feb-11 Actualizaciones de seguridad de Microsoft para Febrero 2026.
Gravedad: Alta
Fecha de publicaci\u00f3n: febrero 11, 2026
\u00daltima revisi\u00f3n: febrero 11, 2026
https:\/\/msrc.microsoft.com\/update-guide\/releaseNote\/2026-Feb<\/p>\n\n\n\n

Sistemas Afectados:
Windows Win32K – GRFX
Microsoft Edge for Android
Windows Notepad App
Windows GDI+
.NET and Visual Studio
Windows Kernel
Azure Local
Power BI
Windows HTTP.sys
Windows Connected Devices Platform Service
Microsoft Graphics Component
Windows Ancillary Function Driver for WinSock
Windows Subsystem for Linux
Windows LDAP – Lightweight Directory Access Protocol
Role: Windows Hyper-V
Windows NTLM
Windows Cluster Client Failover
Mailslot File System
GitHub Copilot and Visual Studio
Microsoft Office Excel
Microsoft Office Word
Windows Storage
Windows Shell
Microsoft Office Outlook
Azure DevOps Server
Internet Explorer
Github Copilot
Windows App for Mac
.NET
Desktop Window Manager
Azure Compute Gallery
Windows Remote Access Connection Manager
Microsoft Exchange Server
Azure IoT SDK
Azure HDInsights
Azure SDK
Azure Function
Windows Remote Desktop
Microsoft Defender for Linux
Azure Front Door (AFD)
Azure Arc<\/p>\n\n\n\n

I. Descripci\u00f3n
Microsoft ha liberado sus actualizaciones de seguridad correspondientes al mes de febrero de 2026.
Este conjunto de actualizaciones remedia 58 fallas y 6 d\u00eda cero.<\/p>\n\n\n\n

II. Detalle<\/p>\n\n\n\n

Tag<\/th>CVE ID<\/th>CVE Title<\/th>Severity<\/th><\/tr>
.NET<\/td>CVE-2026-21218<\/a><\/td>.NET Spoofing Vulnerability<\/td>Important<\/td><\/tr>
Azure Arc<\/td>CVE-2026-24302<\/a><\/td>Azure Arc Elevation of Privilege Vulnerability<\/td>Critical<\/td><\/tr>
Azure Compute Gallery<\/td>CVE-2026-23655<\/a><\/td>Microsoft ACI Confidential Containers Information Disclosure Vulnerability<\/td>Critical<\/td><\/tr>
Azure Compute Gallery<\/td>CVE-2026-21522<\/a><\/td>Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability<\/td>Critical<\/td><\/tr>
Azure DevOps Server<\/td>CVE-2026-21512<\/a><\/td>Azure DevOps Server Cross-Site Scripting Vulnerability<\/td>Important<\/td><\/tr>
Azure Front Door (AFD)<\/td>CVE-2026-24300<\/a><\/td>Azure Front Door Elevation of Privilege Vulnerability<\/td>Critical<\/td><\/tr>
Azure Function<\/td>CVE-2026-21532<\/a><\/td>Azure Function Information Disclosure Vulnerability<\/td>Critical<\/td><\/tr>
Azure HDInsights<\/td>CVE-2026-21529<\/a><\/td>Azure HDInsight Spoofing Vulnerability<\/td>Important<\/td><\/tr>
Azure IoT SDK<\/td>CVE-2026-21528<\/a><\/td>Azure IoT Explorer Information Disclosure Vulnerability<\/td>Important<\/td><\/tr>
Azure Local<\/td>CVE-2026-21228<\/a><\/td>Azure Local Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Azure SDK<\/td>CVE-2026-21531<\/a><\/td>Azure SDK for Python Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Desktop Window Manager<\/td>CVE-2026-21519<\/a><\/td>Desktop Window Manager Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Github Copilot<\/td>CVE-2026-21516<\/a><\/td>GitHub Copilot for Jetbrains Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
GitHub Copilot and Visual Studio<\/td>CVE-2026-21523<\/a><\/td>GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
GitHub Copilot and Visual Studio<\/td>CVE-2026-21256<\/a><\/td>GitHub Copilot and Visual Studio Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
GitHub Copilot and Visual Studio<\/td>CVE-2026-21257<\/a><\/td>GitHub Copilot and Visual Studio Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
GitHub Copilot and Visual Studio Code<\/td>CVE-2026-21518<\/a><\/td>GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability<\/td>Important<\/td><\/tr>
Mailslot File System<\/td>CVE-2026-21253<\/a><\/td>Mailslot File System Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Defender for Linux<\/td>CVE-2026-21537<\/a><\/td>Microsoft Defender for Endpoint Linux Extension Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Edge (Chromium-based)<\/td>CVE-2026-1861<\/a><\/td>Chromium: CVE-2026-1861 Heap buffer overflow in libvpx<\/td>Unknown<\/td><\/tr>
Microsoft Edge (Chromium-based)<\/td>CVE-2026-1862<\/a><\/td>Chromium: CVE-2026-1862 Type Confusion in V8<\/td>Unknown<\/td><\/tr>
Microsoft Edge for Android<\/td>CVE-2026-0391<\/a><\/td>Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability<\/td>Moderate<\/td><\/tr>
Microsoft Exchange Server<\/td>CVE-2026-21527<\/a><\/td>Microsoft Exchange Server Spoofing Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Graphics Component<\/td>CVE-2026-21246<\/a><\/td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Graphics Component<\/td>CVE-2026-21235<\/a><\/td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Office Excel<\/td>CVE-2026-21261<\/a><\/td>Microsoft Excel Information Disclosure Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Office Excel<\/td>CVE-2026-21258<\/a><\/td>Microsoft Excel Information Disclosure Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Office Excel<\/td>CVE-2026-21259<\/a><\/td>Microsoft Excel Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Office Outlook<\/td>CVE-2026-21260<\/a><\/td>Microsoft Outlook Spoofing Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Office Outlook<\/td>CVE-2026-21511<\/a><\/td>Microsoft Outlook Spoofing Vulnerability<\/td>Important<\/td><\/tr>
Microsoft Office Word<\/td>CVE-2026-21514<\/a><\/td>Microsoft Word Security Feature Bypass Vulnerability<\/td>Important<\/td><\/tr>
MSHTML Framework<\/td>CVE-2026-21513<\/a><\/td>MSHTML Framework Security Feature Bypass Vulnerability<\/td>Important<\/td><\/tr>
Power BI<\/td>CVE-2026-21229<\/a><\/td>Power BI Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Role: Windows Hyper-V<\/td>CVE-2026-21244<\/a><\/td>Windows Hyper-V Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Role: Windows Hyper-V<\/td>CVE-2026-21255<\/a><\/td>Windows Hyper-V Security Feature Bypass Vulnerability<\/td>Important<\/td><\/tr>
Role: Windows Hyper-V<\/td>CVE-2026-21248<\/a><\/td>Windows Hyper-V Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Role: Windows Hyper-V<\/td>CVE-2026-21247<\/a><\/td>Windows Hyper-V Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Windows Ancillary Function Driver for WinSock<\/td>CVE-2026-21236<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Ancillary Function Driver for WinSock<\/td>CVE-2026-21241<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Ancillary Function Driver for WinSock<\/td>CVE-2026-21238<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows App for Mac<\/td>CVE-2026-21517<\/a><\/td>Windows App for Mac Installer Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Cluster Client Failover<\/td>CVE-2026-21251<\/a><\/td>Cluster Client Failover (CCF) Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Connected Devices Platform Service<\/td>CVE-2026-21234<\/a><\/td>Windows Connected Devices Platform Service Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows GDI+<\/td>CVE-2026-20846<\/a><\/td>GDI+ Denial of Service Vulnerability<\/td>Important<\/td><\/tr>
Windows HTTP.sys<\/td>CVE-2026-21240<\/a><\/td>Windows HTTP.sys Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows HTTP.sys<\/td>CVE-2026-21250<\/a><\/td>Windows HTTP.sys Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows HTTP.sys<\/td>CVE-2026-21232<\/a><\/td>Windows HTTP.sys Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Kernel<\/td>CVE-2026-21231<\/a><\/td>Windows Kernel Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Kernel<\/td>CVE-2026-21222<\/a><\/td>Windows Kernel Information Disclosure Vulnerability<\/td>Important<\/td><\/tr>
Windows Kernel<\/td>CVE-2026-21239<\/a><\/td>Windows Kernel Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Kernel<\/td>CVE-2026-21245<\/a><\/td>Windows Kernel Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows LDAP – Lightweight Directory Access Protocol<\/td>CVE-2026-21243<\/a><\/td>Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability<\/td>Important<\/td><\/tr>
Windows Notepad App<\/td>CVE-2026-20841<\/a><\/td>Windows Notepad App Remote Code Execution Vulnerability<\/td>Important<\/td><\/tr>
Windows NTLM<\/td>CVE-2026-21249<\/a><\/td>Windows NTLM Spoofing Vulnerability<\/td>Important<\/td><\/tr>
Windows Remote Access Connection Manager<\/td>CVE-2026-21525<\/a><\/td>Windows Remote Access Connection Manager Denial of Service Vulnerability<\/td>Moderate<\/td><\/tr>
Windows Remote Desktop<\/td>CVE-2026-21533<\/a><\/td>Windows Remote Desktop Services Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Shell<\/td>CVE-2026-21510<\/a><\/td>Windows Shell Security Feature Bypass Vulnerability<\/td>Important<\/td><\/tr>
Windows Storage<\/td>CVE-2026-21508<\/a><\/td>Windows Storage Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Subsystem for Linux<\/td>CVE-2026-21237<\/a><\/td>Windows Subsystem for Linux Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Subsystem for Linux<\/td>CVE-2026-21242<\/a><\/td>Windows Subsystem for Linux Elevation of Privilege Vulnerability<\/td>Important<\/td><\/tr>
Windows Win32K – GRFX<\/td>CVE-2023-2804<\/a><\/td>Red Hat, Inc. CVE-2023-2804: Heap Based Overflow libjpeg-turbo<\/td>Important<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

III. Referencia a soluciones, herramientas e informaci\u00f3n
Actualizar utilizando Microsoft Windows Update o herramientas de administraci\u00f3n de actualizaciones centralizadas.<\/p>\n\n\n\n

IV. Informaci\u00f3n de contacto
CSIRT PANAMA
Computer Security Incident Response Team Autoridad Nacional para la Innovacion Gubernamental
E-Mail: incidentes@cert.pa
E-Mail: info@cert.pa
Phone: +507 520-CERT (2378)
Web: https:\/\/cert.pa
Key ID: 16F2B124<\/p>\n","protected":false},"excerpt":{"rendered":"

CSIRT Panam\u00e1 Aviso 2026-Feb-11 Actualizaciones de seguridad de Microsoft para Febrero 2026.Gravedad: AltaFecha de publicaci\u00f3n: febrero 11, 2026\u00daltima revisi\u00f3n: febrero 11, 2026https:\/\/msrc.microsoft.com\/update-guide\/releaseNote\/2026-Feb Sistemas Afectados:Windows Win32K – GRFXMicrosoft Edge for AndroidWindows Notepad AppWindows GDI+.NET and Visual…<\/p>\n","protected":false},"author":5,"featured_media":1847,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[76,8,72,9,80,45,94],"class_list":["post-4983","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-actualizaciones","tag-avisos","tag-avisos-de-seguridad","tag-microsoft","tag-vulnerabilidad","tag-windows","tag-windows-update"],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4983","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4983"}],"version-history":[{"count":1,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4983\/revisions"}],"predecessor-version":[{"id":4984,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/4983\/revisions\/4984"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/1847"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4983"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4983"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4983"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}