{"id":9910,"date":"2026-03-10T14:07:10","date_gmt":"2026-03-10T05:07:10","guid":{"rendered":"https:\/\/readtrends.com\/ko\/windows-rds-zero-day-exploit\/"},"modified":"2026-03-10T14:07:10","modified_gmt":"2026-03-10T05:07:10","slug":"windows-rds-zero-day-exploit","status":"publish","type":"post","link":"https:\/\/readtrends.com\/ko\/windows-rds-zero-day-exploit\/","title":{"rendered":"\u7f8e CISA, \uc708\ub3c4\uc6b0 RDS \uc81c\ub85c\ub370\uc774 \uacbd\uace0\u2026\ub2e4\ud06c\uc6f9\uc11c 22\ub9cc\ub2ec\ub7ec \uac70\ub798"},"content":{"rendered":"<article>\n<p>\ud575\uc2ec \uc694\uc57d: \ubbf8\uad6d \uc0ac\uc774\ubc84\uc548\ubcf4\u00b7\uc778\ud504\ub77c\ubcf4\uc548\uad6d(CISA)\uc740 \uc708\ub3c4\uc6b0 \uc6d0\uaca9 \ub370\uc2a4\ud06c\ud1b1 \uc11c\ube44\uc2a4(RDS)\uc758 \uc81c\ub85c\ub370\uc774 \ucde8\uc57d\uc810(CVE-2026-21533)\uc744 \uc989\uc2dc \uc54c\ub824\uc9c4 \uc545\uc6a9 \ucde8\uc57d\uc810(KEV) \ubaa9\ub85d\uc5d0 \ucd94\uac00\ud558\uace0 \uae34\uae09 \ud328\uce58\uc640 \uc644\ud654 \uc870\uce58\ub97c \uad8c\uace0\ud588\ub2e4. \uc774 \ucde8\uc57d\uc810\uc740 \uc708\ub3c4\uc6b0 10\u00b711\uacfc \uc708\ub3c4\uc6b0 \uc11c\ubc84 2012\ubd80\ud130 2025\uae4c\uc9c0 \uad11\ubc94\uc704\ud55c \uc2dc\uc2a4\ud15c\uc5d0\uc11c \uc77c\ubc18 \uc0ac\uc6a9\uc790 \uad8c\ud55c\uc744 \ucd5c\uace0 \uad00\ub9ac\uc790 \uad8c\ud55c\uc73c\ub85c \uc0c1\uc2b9\uc2dc\ud0ac \uc218 \uc788\ub2e4. \ub2e4\ud06c\uc6f9\uc5d0\uc11c\ub294 \ud574\ub2f9 \uc775\uc2a4\ud50c\ub85c\uc787\uc774 Kamirmassabi\ub77c\ub294 \uc0ac\uc6a9\uc790\ub97c \ud1b5\ud574 22\ub9cc\ub2ec\ub7ec(\uc57d 3\uc5b5\uc6d0)\uc5d0 \uac70\ub798 \uac8c\uc2dc\ub41c \uc0ac\uc2e4\uc774 \ud655\uc778\ub410\ub2e4. CISA\ub294 \ud328\uce58 \uc801\uc6a9\uc774 \ubd88\uac00\ub2a5\ud55c \uacbd\uc6b0 RDS \ube44\ud65c\uc131\ud654\uc640 EDR \uac00\ub3d9\uc744 \uad8c\uace0\ud558\uace0 \uc788\ub2e4.<\/p>\n<h2>\ud575\uc2ec \uc0ac\uc2e4<\/h2>\n<ul>\n<li>\ucde8\uc57d\uc810 \uc2dd\ubcc4\uc790: CVE-2026-21533\uc73c\ub85c \ubd84\ub958\ub418\uba70 CVSS \uc810\uc218\ub294 7.8\ub85c \uace0\uc704\ud5d8\uad70\uc5d0 \ud574\ub2f9\ud55c\ub2e4.<\/li>\n<li>\uc601\ud5a5 \ubc94\uc704: \uc708\ub3c4\uc6b0 10\u00b711 \ubc0f \uc708\ub3c4\uc6b0 \uc11c\ubc84 2012\ubd80\ud130 2025\uae4c\uc9c0 \uc5ec\ub7ec \uc544\ud0a4\ud14d\ucc98\uc5d0\uc11c \uad8c\ud55c \uc0c1\uc2b9\uc774 \uac00\ub2a5\ud558\ub2e4.<\/li>\n<li>\ub2e4\ud06c\uc6f9 \uac70\ub798: \uc775\uc2a4\ud50c\ub85c\uc787\uc774 Kamirmassabi \uacc4\uc815\uc73c\ub85c \uac8c\uc2dc\ub418\uc5b4 22\ub9cc\ub2ec\ub7ec(\uc57d 3\uc5b5\uc6d0)\uc5d0 \ud310\ub9e4\uac00 \uc2dc\ub3c4\ub410\ub2e4.<\/li>\n<li>CISA \ub300\uc751: \ud574\ub2f9 \ucde8\uc57d\uc810\uc744 KEV \ubaa9\ub85d\uc5d0 \ucd94\uac00\ud558\uace0 \uc989\uc2dc \ud328\uce58\u00b7\uc644\ud654 \uc870\uce58\ub97c \uad8c\uace0\ud588\ub2e4.<\/li>\n<li>\uad8c\uace0 \uc870\uce58: \ud328\uce58 \uc801\uc6a9, \uc6d0\uaca9 \ub370\uc2a4\ud06c\ud1b1 \uc11c\ube44\uc2a4(RDS) \ubd88\ud544\uc694 \uc2dc \ube44\ud65c\uc131\ud654, \uc2e0\ub8b0 \ub124\ud2b8\uc6cc\ud06c\ub85c\uc758 \uc811\uadfc \uc81c\ud55c \ubc0f EDR \uac00\ub3d9.<\/li>\n<li>\ud589\uc815\uc9c0\uce68 \uc5f0\uacc4: CISA\ub294 BOD 22-01 \uc9c0\uce68\uc5d0 \ub530\ub77c \uae34\uae09 \ub300\uc751\uc744 \uad8c\uace0\ud588\ub2e4.<\/li>\n<li>\uacf5\uaca9 \uc601\ud5a5: \uc77c\ubc18 \uad8c\ud55c\uc758 \uacc4\uc815\uc73c\ub85c\ubd80\ud130 \ucd5c\uace0 \uad00\ub9ac\uc790 \uad8c\ud55c \ud68d\ub4dd\uc774 \uac00\ub2a5\ud574 \uc804\uc0ac\uc801 \uce68\ud574\u00b7\ub370\uc774\ud130 \uc720\ucd9c \uc704\ud5d8\uc774 \ud06c\ub2e4.<\/li>\n<\/ul>\n<h2>\uc0ac\uac74 \ubc30\uacbd<\/h2>\n<p>\uc6d0\uaca9 \ub370\uc2a4\ud06c\ud1b1 \uc11c\ube44\uc2a4(RDS)\ub294 \uc6d0\uaca9 \uc811\uc18d\u00b7\uad00\ub9ac \ud3b8\uc758\uc131 \ub54c\ubb38\uc5d0 \uae30\uc5c5\uacfc \uae30\uad00\uc5d0\uc11c \uad11\ubc94\uc704\ud558\uac8c \uc0ac\uc6a9\ub418\ub294 \uae30\ub2a5\uc774\ub2e4. \uadf8\ub7ec\ub098 \uc6d0\uaca9 \uc811\uc18d \uacc4\uce35\uc740 \ub124\ud2b8\uc6cc\ud06c\ub85c \uc9c1\uc811 \ub178\ucd9c\ub418\uae30 \uc26c\uc6cc \uacfc\uac70\uc5d0\ub3c4 \uc5ec\ub7ec \ucde8\uc57d\uc810\uc774 \uacf5\uaca9 \ud1b5\ub85c\ub85c \uc545\uc6a9\ub41c \uc804\ub840\uac00 \uc788\ub2e4. \ud2b9\ud788 \ucd5c\uadfc \uba87 \ub144\uac04 \ub79c\uc12c\uc6e8\uc5b4\uc640 \uad8c\ud55c \uc0c1\uc2b9 \uc775\uc2a4\ud50c\ub85c\uc787\uc740 RDS\ub97c \ud1b5\ud574 \ub0b4\ubd80 \ub124\ud2b8\uc6cc\ud06c\ub85c \uce68\ud22c\ud558\ub294 \uc0ac\ub840\uac00 \ubc18\ubcf5\ub410\ub2e4. \uc774\ubc88 CVE-2026-21533 \ucde8\uc57d\uc810\uc740 \uadf8\ub7ec\ud55c \ub9e5\ub77d\uc5d0\uc11c \ubc1c\uacac\ub410\uace0, \uacf5\uae09\ub9dd\u00b7\uc6d0\uaca9\uadfc\ubb34 \ud655\ub300\ub85c \uc778\ud574 \ub178\ucd9c \ud45c\uba74\uc774 \ud655\ub300\ub41c \ud658\uacbd\uc5d0\uc11c \ud070 \uc704\ud611\uc73c\ub85c \ud3c9\uac00\ub41c\ub2e4.<\/p>\n<p>\ubcf4\uc548 \uc5c5\uacc4\ub294 \uc81c\ub85c\ub370\uc774 \uc775\uc2a4\ud50c\ub85c\uc787\uc774 \uc0c1\uc5c5\uc801 \ubaa9\uc801\uc73c\ub85c \ub2e4\ud06c\uc6f9\uc5d0\uc11c \uac70\ub798\ub418\ub294 \ud604\uc0c1\uc744 \uc6b0\ub824\ud574 \uc654\ub2e4. \uc775\uc2a4\ud50c\ub85c\uc787 \uac00\uaca9\uc740 \uc791\ub3d9 \uc548\uc815\uc131, \ud0c0\uae43 \ubc94\uc704, \uc775\uba85\uc131 \uc5ec\ubd80\uc5d0 \ub530\ub77c \ucc9c\ucc28\ub9cc\ubcc4\uc778\ub370, 22\ub9cc\ub2ec\ub7ec\ub77c\ub294 \ub192\uc740 \uac00\uaca9\uc740 \uc5ec\ub7ec \ubc84\uc804\u00b7\uc544\ud0a4\ud14d\ucc98\uc5d0\uc11c \uc548\uc815\uc801\uc73c\ub85c \ub3d9\uc791\ud560 \uac00\ub2a5\uc131\uc744 \uc2dc\uc0ac\ud55c\ub2e4. \ub9c8\uc774\ud06c\ub85c\uc18c\ud504\ud2b8\ub294 \uc774 \uacb0\ud568\uc744 \uacf5\uc2dd \uc778\uc815\ud55c \ubc14 \uc788\uc73c\uba70, \ubcf4\uc548 \ud328\uce58\uc640 \ud568\uaed8 \ud0d0\uc9c0\u00b7\uc644\ud654 \uc9c0\uce68\uc744 \uc81c\uacf5\ud558\uace0 \uc788\ub2e4. \uc815\ubd80 \uae30\uad00\uacfc \ubcf4\uc548\uc5c5\uccb4\ub294 \uc774\ubc88 \uc0ac\uc548\uc774 \ub300\uaddc\ubaa8 \uacf5\uaca9\uc758 \ub2e8\ucd08\uac00 \ub420 \uc218 \uc788\ub2e4\uace0 \ubcf4\uace0 \uae34\uae09 \ub300\uc751\uc744 \ucd09\uad6c\ud588\ub2e4.<\/p>\n<h2>\uc8fc\uc694 \uc0ac\uac74<\/h2>\n<p>\uc0ac\uac74\uc740 \ub2e4\ud06c\uc6f9 \ud3ec\ub7fc\uc5d0\uc11c \uc2dc\uc791\ub410\ub2e4. \ubcf4\uc548 \ucee4\ubba4\ub2c8\ud2f0 \ubaa8\ub2c8\ud130\ub9c1 \uacb0\uacfc, Kamirmassabi\ub77c\ub294 \uc0ac\uc6a9\uc790 \uacc4\uc815\uc774 \ud574\ub2f9 \uc775\uc2a4\ud50c\ub85c\uc787\uc744 \uc81c\ub85c\ub370\uc774\ub77c\uace0 \ud45c\uae30\ud558\uba70 \uacbd\ub9e4 \ud615\uc2dd\uc73c\ub85c \uc62c\ub838\uace0, \uad6c\ub9e4 \ud76c\ub9dd\uc790\ub294 \uac1c\uc778 \uba54\uc2dc\uc9c0(PM)\ub97c \ud1b5\ud574 \uc811\ucd09\ud558\ub77c\ub294 \uc548\ub0b4\ub97c \ub0a8\uacbc\ub2e4. \uac8c\uc2dc\ubb3c\uc5d0\ub294 22\ub9cc\ub2ec\ub7ec\uc758 \ud76c\ub9dd \uac00\uaca9\uc774 \uba85\uc2dc\ub418\uc5b4 \uc788\uc5c8\uace0, \uc775\uc2a4\ud50c\ub85c\uc787\uc758 \uc791\ub3d9 \ubc94\uc704\uc640 \uc548\uc815\uc131\uc5d0 \ub300\ud55c \uadfc\uac70\ub97c \uc81c\uc2dc\ud55c \uac83\uc73c\ub85c \uc54c\ub824\uc84c\ub2e4.<\/p>\n<p>\uc774\ud6c4 CISA\uac00 \ud574\ub2f9 \ucde8\uc57d\uc810\uc744 KEV \ubaa9\ub85d\uc5d0 \ucd94\uac00\ud558\uba74\uc11c \uc0ac\uc548\uc758 \uc2ec\uac01\uc131\uc774 \uacf5\uc2dd\ud654\ub410\ub2e4. KEV \ub4f1\uc7ac\ub294 \uc2e4\uc81c \uc545\uc6a9 \uc815\ud669\uc774 \ud655\uc778\ub418\uc5c8\uac70\ub098 \uc775\uc2a4\ud50c\ub85c\uc787\uc774 \uacf5\uac1c\u00b7\uac70\ub798\ub418\ub294 \uacbd\uc6b0 \ucde8\ud574\uc9c0\ub294 \uc870\uce58\ub85c, \uc5f0\ubc29\u00b7\uc8fc\u00b7\uc9c0\ubc29 \uae30\uad00\uc5d0 \uc6b0\uc120\uc801 \ubcf4\uc548 \uc870\uce58 \uc774\ud589\uc744 \uc694\uad6c\ud55c\ub2e4. CISA\ub294 BOD 22-01 \uc9c0\uce68\uc5d0 \ub530\ub77c \ud328\uce58 \uc6b0\uc120 \uc801\uc6a9, \ubd88\uac00\ud53c \uc2dc \uc6d0\uaca9 \uc11c\ube44\uc2a4 \ube44\ud65c\uc131\ud654 \ub4f1\uc744 \uad8c\uace0\ud588\ub2e4.<\/p>\n<p>\ud604\uc7a5\uc5d0\uc11c\ub294 \uad00\ub9ac\uc790\uac00 \uc989\uc2dc \ud328\uce58\ub97c \uc801\uc6a9\ud558\uae30 \uc5b4\ub824\uc6b4 \ud658\uacbd\uc774 \uc874\uc7ac\ud55c\ub2e4. \uc0b0\uc5c5\uc81c\uc5b4\uc2dc\uc2a4\ud15c, \ub808\uac70\uc2dc \uc11c\ubc84, \uc678\ubd80 \uc811\uc18d\uc774 \ud544\uc218\uc801\uc778 \uad00\ub9ac \ucf58\uc194 \ub4f1\uc5d0\uc11c\ub294 \ud328\uce58 \uc804\ud658\uc774 \ubcf5\uc7a1\ud558\uace0 \ub2e4\uc6b4\ud0c0\uc784\uc774 \ubc1c\uc0dd\ud560 \uc218 \uc788\ub2e4. CISA\ub294 \uc774\ub7ec\ud55c \ub2e8\ub9d0\uc740 \uc784\uc2dc\ub85c RDS \uc811\uc18d\uc744 \ucc28\ub2e8\ud558\uac70\ub098, \uc5d1\uc138\uc2a4\ub97c \ud2b9\uc815 \ub124\ud2b8\uc6cc\ud06c\ub85c \uc81c\ud55c\ud558\ub294 \uc2dd\uc758 \uc644\ud654\ucc45\uc744 \uad8c\uace0\ud588\ub2e4. \ub610\ud55c EDR\uc744 \ud1b5\ud574 \ube44\uc815\uc0c1\uc801\uc778 \ub808\uc9c0\uc2a4\ud2b8\ub9ac \ubcc0\uacbd \ubc0f \uad8c\ud55c \uc0c1\uc2b9 \uc2dc\ub3c4\ub97c \ubaa8\ub2c8\ud130\ub9c1\ud560 \uac83\uc744 \uba85\uc2dc\ud588\ub2e4.<\/p>\n<h2>\ubd84\uc11d \ubc0f \uc758\ubbf8<\/h2>\n<p>\uccab\uc9f8, \uc774 \ucde8\uc57d\uc810\uc740 \uad8c\ud55c \uc0c1\uc2b9\uc744 \ud1b5\ud574 \ub2e8\uc77c \uce68\ud22c \uc9c0\uc810\uc774 \uc804\uc0ac\uc801 \ud1b5\uc81c \uc0c1\uc2e4\ub85c \uc774\uc5b4\uc9c8 \uc218 \uc788\uc74c\uc744 \ubcf4\uc5ec\uc900\ub2e4. \uc77c\ubc18 \uc0ac\uc6a9\uc790 \uad8c\ud55c\uc5d0\uc11c \uad00\ub9ac\uc790 \uad8c\ud55c\uc73c\ub85c \uc804\ud658\uc774 \uac00\ub2a5\ud55c \ucde8\uc57d\uc810\uc740 \ub79c\uc12c\uc6e8\uc5b4, \ub370\uc774\ud130 \uc720\ucd9c, \uc11c\ube44\uc2a4 \uac70\ubd80 \ub4f1 \ubcf5\ud569\uc801 \ud53c\ud574\ub85c \ud655\ub300\ub420 \uc704\ud5d8\uc774 \ud06c\ub2e4. \ud2b9\ud788 RDS\ub294 \ub124\ud2b8\uc6cc\ud06c \uacbd\uacc4\uc5d0\uc11c \uc0c1\ub300\uc801\uc73c\ub85c \ub0ae\uc740 \ubcf4\uc548 \ud1b5\uc81c\ub97c \ubc1b\ub294 \uacbd\uc6b0\uac00 \ub9ce\uc544 \ucd08\uae30 \uc811\uadfc \ud6c4 \uce21\uba74 \uc774\ub3d9(Lateral Movement)\uc774 \uc6a9\uc774\ud574\uc9c4\ub2e4.<\/p>\n<p>\ub458\uc9f8, \ub2e4\ud06c\uc6f9\uc5d0\uc11c\uc758 \uac70\ub798 \uac00\uaca9\uacfc \ubc29\uc2dd\uc740 \uacf5\uaca9 \uc0dd\ud0dc\uacc4\uc758 \uc0c1\uc5c5\ud654\ub97c \uc7ac\ud655\uc778\uc2dc\ud0a8\ub2e4. 22\ub9cc\ub2ec\ub7ec\uc5d0 \ub2ec\ud558\ub294 \uace0\uac00\uc758 \uc775\uc2a4\ud50c\ub85c\uc787\uc740 \ud310\ub9e4\uc790\uc5d0\uac8c\ub294 \uc218\uc775 \ubaa8\ub378\uc744, \uad6c\ub9e4\uc790\uc5d0\uac8c\ub294 \ub300\uaddc\ubaa8 \uce68\ud22c \uc218\ub2e8\uc744 \uc81c\uacf5\ud55c\ub2e4. \uc774\ub294 \ub2e8\uc21c\ud55c \uc5f0\uad6c \ubaa9\uc801\uc758 \u2018\uacf5\uac1c \ucde8\uc57d\uc810\u2019\uacfc \ub2ec\ub9ac \uc0c1\uc5c5\uc801 \ub9e4\ub9e4\uac00 \ud65c\ubc1c\ud55c \ud658\uacbd\uc5d0\uc11c \ubc29\uc5b4 \uce21\uc758 \ub300\uc751 \uc6b0\uc120\uc21c\uc704\ub97c \uc7ac\uc815\ub9bd\ud574\uc57c \ud568\uc744 \ub73b\ud55c\ub2e4.<\/p>\n<p>\uc14b\uc9f8, \uc870\uc9c1\uc758 \uc6b4\uc601\u00b7\uc11c\ube44\uc2a4 \uc5f0\uc18d\uc131\uacfc \ubcf4\uc548\uc758 \uade0\ud615\uc744 \ub9de\ucd94\ub294 \uac83\uc774 \ud575\uc2ec \uacfc\uc81c\ub85c \ub5a0\uc624\ub978\ub2e4. \uc989\uc2dc \ud328\uce58\ub97c \uc801\uc6a9\ud558\ub294 \uac83\uc774 \ucd5c\uc120\uc774\ub098, \ud604\uc2e4\uc801\uc73c\ub85c \ubd88\uac00\ud53c\ud55c \uc2dc\uc2a4\ud15c\uc740 RDS \ube44\ud65c\uc131\ud654\u00b7\ub124\ud2b8\uc6cc\ud06c \ubd84\ub9ac\u00b7\uc784\uc2dc \uc811\uadfc \ud1b5\uc81c \ub4f1 \ub2e4\uce35\uc801 \uc644\ud654\uac00 \ud544\uc694\ud558\ub2e4. \ub610\ud55c EDR\uacfc \ub85c\uadf8 \ubd84\uc11d\uc744 \ud1b5\ud574 \uad8c\ud55c \uc0c1\uc2b9 \uc2dc\ub3c4 \uc9d5\ud6c4\ub97c \uc2e0\uc18d\ud788 \ud0d0\uc9c0\ud558\uba74 \uacf5\uaca9 \ud655\uc0b0\uc744 \ub9c9\ub294 \ub370 \uc720\ub9ac\ud558\ub2e4.<\/p>\n<h2>\ube44\uad50 \ubc0f \ub370\uc774\ud130<\/h2>\n<figure>\n<table>\n<thead>\n<tr>\n<th>\ud56d\ubaa9<\/th>\n<th>\uc774\ubc88 \ucde8\uc57d\uc810<\/th>\n<th>\uacfc\uac70 RDS \uad00\ub828 \ucde8\uc57d\uc810(\uc608)<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>CVE<\/td>\n<td>CVE-2026-21533<\/td>\n<td>CVE-2019-0708 (\uc608\uc2dc)<\/td>\n<\/tr>\n<tr>\n<td>CVSS<\/td>\n<td>7.8<\/td>\n<td>9.8<\/td>\n<\/tr>\n<tr>\n<td>\uc601\ud5a5 \ubc84\uc804<\/td>\n<td>Win10\u00b711, Server 2012~2025<\/td>\n<td>\uad6c\ubc84\uc804 Windows \uc8fc\ub85c \uc601\ud5a5<\/td>\n<\/tr>\n<tr>\n<td>\ub2e4\ud06c\uc6f9 \uac70\ub798\uac00<\/td>\n<td>22\ub9cc\ub2ec\ub7ec<\/td>\n<td>\uc218\ub9cc~\uc218\uc2ed\ub9cc \ub2ec\ub7ec\ub300 (\uc0ac\ub840\ubcc4)<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/figure>\n<p>\uc704 \ud45c\ub294 \uc774\ubc88 \ucde8\uc57d\uc810\uacfc \uacfc\uac70 RDS \uad00\ub828 \ub300\ud45c \ucde8\uc57d\uc810\uc744 \ube44\uad50\ud55c \uac83\uc774\ub2e4. CVSS \uc810\uc218\ub294 \uc0c1\ub300\uc801 \uc704\ud5d8\ub3c4\ub97c \ubcf4\uc5ec\uc8fc\uba70, \uc810\uc218\uac00 \ub192\uc744\uc218\ub85d \uc6d0\uaca9 \ucf54\ub4dc \uc2e4\ud589\uc774\ub098 \uc778\uc99d \uc6b0\ud68c \ub4f1 \uc989\uac01\uc801 \uce68\ud574 \uac00\ub2a5\uc131\uc774 \ud070 \ud3b8\uc774\ub2e4. \ub2e4\ub9cc \uacf5\uaca9 \uc131\uacf5 \uac00\ub2a5\uc131\uc740 \ud328\uce58 \uc0c1\ud0dc, \ub124\ud2b8\uc6cc\ud06c \ub178\ucd9c \uc815\ub3c4, \ud0d0\uc9c0\u00b7\ub300\uc751 \uccb4\uacc4\uc5d0 \ub530\ub77c \ub2ec\ub77c\uc9c4\ub2e4. \uacfc\uac70 \uc0ac\ub840\ub4e4\uc740 \ud328\uce58\uc640 \ub124\ud2b8\uc6cc\ud06c \ucc28\ub2e8\uc73c\ub85c \ud53c\ud574\ub97c \uc904\uc778 \uacbd\uc6b0\uac00 \ub9ce\uc73c\ubbc0\ub85c \uc2e0\uc18d\ud55c \ub300\uc751\uc774 \ud575\uc2ec\uc774\ub2e4.<\/p>\n<h2>\ubc18\uc751 \ubc0f \uc778\uc6a9<\/h2>\n<p>\ubcf4\uc548 \uc5c5\uacc4\uc640 \ub2f9\uad6d\uc740 \uc774\ubc88 \uc0ac\uac74\uc744 \uacc4\uae30\ub85c \uc6d0\uaca9 \uc811\uc18d \ubcf4\uc548 \uac15\ud654\uc640 \ub85c\uadf8 \ubaa8\ub2c8\ud130\ub9c1\uc758 \ud544\uc694\uc131\uc744 \uc7ac\ucc28 \uac15\uc870\ud588\ub2e4. \ud2b9\ud788 \uae30\uad00\u00b7\uae30\uc5c5\uc758 \ubcf4\uc548\ud300\uc740 \ud328\uce58 \uc6b0\uc120 \uc21c\uc704\ub97c \uc7ac\uac80\ud1a0\ud558\uace0, \uc6b4\uc601\uc0c1 \uc989\uc2dc \ud328\uce58\uac00 \uc5b4\ub824\uc6b4 \uc790\uc0b0\uc758 \uc811\uadfc \uc81c\ud55c\uc744 \uc2e0\uc18d\ud788 \uc2dc\ud589\ud560 \uac83\uc744 \uc8fc\ubb38\ud588\ub2e4.<\/p>\n<blockquote>\n<p>\uc774\ubc88 \ucde8\uc57d\uc810\uc740 \uacf5\uaca9\uc790\uac00 \uad8c\ud55c \uc0c1\uc2b9\uc744 \ud1b5\ud574 \ud658\uacbd \uc804\uccb4\ub97c \uc7a5\uc545\ud560 \uc218 \uc788\ub294 \ubc29\uc2dd\uc774\ub2e4. \uac00\ub2a5\ud55c \ud55c \ube68\ub9ac \ud328\uce58\ub97c \uc801\uc6a9\ud558\uace0, \uc989\uc2dc \ubd88\ud544\uc694\ud55c RDS \uc811\uadfc\uc744 \ucc28\ub2e8\ud558\ub77c.<\/p>\n<p><cite>CISA(\uacf5\uc2dd \uad8c\uace0)<\/cite><\/p><\/blockquote>\n<p>\uc704 \uc778\uc6a9\uc740 CISA \uad8c\uace0\uc758 \uc694\uc9c0\ub85c, \uae30\uad00 \ucc28\uc6d0\uc5d0\uc11c \ucde8\uc57d\uc810\uc774 \uc54c\ub824\uc9c4 \uc989\uc2dc \uc870\uce58\ub97c \ucde8\ud560 \uac83\uc744 \uac15\uc870\ud55c \uac83\uc774\ub2e4. CISA \uad8c\uace0\ub294 \uc5f0\ubc29\uae30\uad00\ubfd0 \uc544\ub2c8\ub77c \ubbfc\uac04 \uc870\uc9c1\uc5d0\ub3c4 \uc801\uc6a9 \uac00\ub2a5\ud55c \uc2e4\ubb34\uc801 \uc9c0\uce68\uc744 \uc81c\uc2dc\ud55c\ub2e4.<\/p>\n<blockquote>\n<p>\ub2e4\ud06c\uc6f9\uc5d0\uc11c \uace0\uac00\uc5d0 \uac70\ub798\ub418\ub294 \uc775\uc2a4\ud50c\ub85c\uc787\uc740 \uc5ec\ub7ec \ud658\uacbd\uc5d0\uc11c \uc548\uc815\uc801\uc73c\ub85c \uc791\ub3d9\ud560 \uac00\ub2a5\uc131\uc774 \ub192\ub2e4. \uc774\ub294 \ud53c\ud574 \ud655\uc0b0 \uac00\ub2a5\uc131\uc744 \ub192\uc774\ub294 \uc694\uc778\uc774\ub2e4.<\/p>\n<p><cite>\ubcf4\uc548\uc5c5\uccb4 \ubd84\uc11d\uac00(\uc5c5\uacc4 \uc778\ud130\ubdf0)<\/cite><\/p><\/blockquote>\n<p>\uc5c5\uacc4 \ubd84\uc11d\uac00\ub294 \uac70\ub798 \uac00\uaca9\u00b7\uc124\uba85\uc73c\ub85c \ubbf8\ub8e8\uc5b4 \uc775\uc2a4\ud50c\ub85c\uc787\uc758 \ubc94\uc6a9\uc131 \ubc0f \uc548\uc815\uc131\uc774 \ub192\uc544 \ubcf4\uc778\ub2e4\uace0 \ud3c9\uac00\ud588\ub2e4. \uc774 \uac19\uc740 \ud3c9\uac00\uac00 \uc0ac\uc2e4\uc77c \uacbd\uc6b0, \uc801\uc2dc \ud0d0\uc9c0\uc640 \ub124\ud2b8\uc6cc\ud06c \ubd84\ub9ac\uac00 \ud53c\ud574 \ucd5c\uc18c\ud654\uc758 \ud575\uc2ec \uc218\ub2e8\uc774 \ub41c\ub2e4.<\/p>\n<h2>\n<aside>\n<details>\n<summary>\uc6a9\uc5b4\/\ubc29\ubc95\ub860<\/summary>\n<p>RDS(Remote Desktop Services)\ub294 \uc6d0\uaca9\uc73c\ub85c \ucef4\ud4e8\ud130\uc5d0 \uc811\uc18d\ud574 \ub370\uc2a4\ud06c\ud1b1 \ud658\uacbd\uc744 \uc81c\uc5b4\ud558\ub294 \ub9c8\uc774\ud06c\ub85c\uc18c\ud504\ud2b8\uc758 \uae30\ub2a5\uc774\ub2e4. CVE(Common Vulnerabilities and Exposures)\ub294 \uacf5\uac1c\ub41c \ucde8\uc57d\uc810 \uace0\uc720\ubc88\ud638\uc774\uba70, CVSS(Common Vulnerability Scoring System)\ub294 \ucde8\uc57d\uc810\uc758 \uc2ec\uac01\ub3c4\ub97c \uc218\uce58\ud654\ud55c \uc9c0\ud45c\ub2e4. KEV(Known Exploited Vulnerabilities)\ub294 \uc545\uc6a9 \uc815\ud669\uc774 \ud655\uc778\ub41c \ucde8\uc57d\uc810\uc744 \ubaa8\uc544 \uad00\ub9ac\ud558\ub294 \ubaa9\ub85d\uc774\uba70, EDR(Endpoint Detection and Response)\uc740 \ub2e8\ub9d0 \uae30\ubc18\uc758 \ud0d0\uc9c0\u00b7\ub300\uc751 \uc194\ub8e8\uc158\uc744 \ub9d0\ud55c\ub2e4. BOD 22-01\uc740 \ubbf8\uad6d \uc5f0\ubc29\uc815\ubd80\uc5d0 \ud2b9\uc815 \ubcf4\uc548 \uc870\uce58\ub97c \uc694\uad6c\ud558\ub294 \ud589\uc815 \uba85\ub839\uc131 \uc9c0\uce68\uc73c\ub85c, \uc54c\ub824\uc9c4 \uc545\uc6a9 \ucde8\uc57d\uc810\uc5d0 \ub300\ud574 \uc2e0\uc18d\ud55c \ub300\uc751\uc744 \ucd09\uad6c\ud55c\ub2e4.<\/p>\n<\/details>\n<\/aside>\n<\/h2>\n<h2>\ubd88\ud655\uc2e4\ud55c \ubd80\ubd84<\/h2>\n<ul>\n<li>\uc775\uc2a4\ud50c\ub85c\uc787\uc758 \uc2e4\uc81c \ubc30\ud3ec\u00b7\uc0ac\uc6a9 \uc0ac\ub840 \uc218\ub294 \uacf5\uac1c\ub41c \uc99d\uac70\uac00 \uc81c\ud55c\uc801\uc774\uba70, \ud604\uc7ac\uae4c\uc9c0 \uad11\ubc94\uc704\ud55c \ub300\uaddc\ubaa8 \uacf5\uaca9 \ubc1c\uc0dd \uc5ec\ubd80\ub294 \ud655\uc778\ub418\uc9c0 \uc54a\uc558\ub2e4.<\/li>\n<li>\ub2e4\ud06c\uc6f9 \uac8c\uc2dc\ubb3c\uc758 \ud310\ub9e4\uc790\uac00 \uc8fc\uc7a5\ud558\ub294 \uc775\uc2a4\ud50c\ub85c\uc787\uc758 \ub2e4\uc911 \uc544\ud0a4\ud14d\ucc98 \ud638\ud658\uc131\u00b7\uc548\uc815\uc131 \ub4f1 \uae30\uc220\uc801 \uc0c1\uc138\ub294 \ub3c5\ub9bd\uc801\uc73c\ub85c \uac80\uc99d\ub418\uc9c0 \uc54a\uc558\ub2e4.<\/li>\n<\/ul>\n<h2>\ucd1d\ud3c9<\/h2>\n<p>\uc774\ubc88 CVE-2026-21533 \uc774\uc288\ub294 \uc6d0\uaca9 \uc811\uc18d \uc778\ud504\ub77c\uc758 \ucde8\uc57d\uc131\uc774 \uc2e4\ubb3c \uacbd\uc81c\u00b7\uc6b4\uc601\uc5d0 \ubbf8\uce60 \uc601\ud5a5\uc744 \ub2e4\uc2dc \ud658\uae30\uc2dc\ud0a8 \uc0ac\uac74\uc774\ub2e4. \ub2e4\ud06c\uc6f9\uc5d0\uc11c \uace0\uac00\uc5d0 \uac70\ub798\ub418\ub294 \uc775\uc2a4\ud50c\ub85c\uc787\uc740 \ub2e8\uc21c \uc5f0\uad6c\uc6a9 \uacf5\uac1c \ucde8\uc57d\uc810\uacfc \ub2ec\ub9ac \uc0c1\uc5c5\uc801 \uc545\uc6a9 \uac00\ub2a5\uc131\uc744 \ub192\uc774\uba70, \uc774\uc5d0 \ub530\ub77c \ubc29\uc5b4 \uccb4\uacc4\uc758 \uc6b0\uc120\uc21c\uc704 \uc870\uc815\uc774 \ud544\uc694\ud558\ub2e4.<\/p>\n<p>\uc2e4\ubb34\uc801\uc73c\ub85c\ub294 \uac00\ub2a5\ud55c \uc989\uc2dc \ud328\uce58\ub97c \uc801\uc6a9\ud558\ub418, \ud328\uce58 \uc801\uc6a9\uc774 \ud604\uc2e4\uc801\uc73c\ub85c \ubd88\uac00\ub2a5\ud55c \uc790\uc0b0\uc740 RDS \ube44\ud65c\uc131\ud654, \ub124\ud2b8\uc6cc\ud06c \ubd84\ub9ac, \uc811\uadfc \ud1b5\uc81c \uac15\ud654, EDR \uac00\ub3d9 \ub4f1 \ub2e4\uce35\uc801 \uc644\ud654\uc870\uce58\ub97c \ubcd1\ud589\ud574\uc57c \ud55c\ub2e4. \ud5a5\ud6c4 \uacf5\uaca9 \uc9d5\ud6c4\uac00 \ud3ec\ucc29\ub420 \uacbd\uc6b0 \ube60\ub978 \ub85c\uadf8 \ubd84\uc11d\uacfc \ucc28\ub2e8\uc744 \ud1b5\ud574 \ud53c\ud574 \ud655\uc0b0\uc744 \ucd5c\uc18c\ud654\ud558\ub294 \uac83\uc774 \uad00\uac74\uc774\ub2e4.<\/p>\n<h2>\ucd9c\ucc98<\/h2>\n<ul>\n<li><a href=\"http:\/\/m.boannews.com\/html\/detail.html?idx=142543&#038;skind=D\" target=\"_blank\" rel=\"noopener\">\ubcf4\uc548\ub274\uc2a4(\uc5b8\ub860)<\/a><\/li>\n<li><a href=\"https:\/\/www.cisa.gov\/known_exploited_vulnerabilities\" target=\"_blank\" rel=\"noopener\">CISA KEV \ubaa9\ub85d(\uacf5\uc2dd)<\/a><\/li>\n<\/ul>\n<\/article>\n","protected":false},"excerpt":{"rendered":"<p>\ud575\uc2ec \uc694\uc57d: \ubbf8\uad6d \uc0ac\uc774\ubc84\uc548\ubcf4\u00b7\uc778\ud504\ub77c\ubcf4\uc548\uad6d(CISA)\uc740 \uc708\ub3c4\uc6b0 \uc6d0\uaca9 \ub370\uc2a4\ud06c\ud1b1 \uc11c\ube44\uc2a4(RDS)\uc758 \uc81c\ub85c\ub370\uc774 \ucde8\uc57d\uc810(CVE-2026-21533)\uc744 \uc989\uc2dc \uc54c\ub824\uc9c4 \uc545\uc6a9 \ucde8\uc57d\uc810(KEV) \ubaa9\ub85d\uc5d0 \ucd94\uac00\ud558\uace0 \uae34\uae09 \ud328\uce58\uc640 \uc644\ud654 \uc870\uce58\ub97c \uad8c\uace0\ud588\ub2e4. \uc774 \ucde8\uc57d\uc810\uc740 \uc708\ub3c4\uc6b0 10\u00b711\uacfc \uc708\ub3c4\uc6b0 \uc11c\ubc84 2012\ubd80\ud130 2025\uae4c\uc9c0 \uad11\ubc94\uc704\ud55c \uc2dc\uc2a4\ud15c\uc5d0\uc11c \uc77c\ubc18 \uc0ac\uc6a9\uc790 \uad8c\ud55c\uc744 \ucd5c\uace0 \uad00\ub9ac\uc790 \uad8c\ud55c\uc73c\ub85c \uc0c1\uc2b9\uc2dc\ud0ac \uc218 \uc788\ub2e4. \ub2e4\ud06c\uc6f9\uc5d0\uc11c\ub294 \ud574\ub2f9 \uc775\uc2a4\ud50c\ub85c\uc787\uc774 Kamirmassabi\ub77c\ub294 \uc0ac\uc6a9\uc790\ub97c \ud1b5\ud574 22\ub9cc\ub2ec\ub7ec(\uc57d 3\uc5b5\uc6d0)\uc5d0 \uac70\ub798 \uac8c\uc2dc\ub41c \uc0ac\uc2e4\uc774 \ud655\uc778\ub410\ub2e4. CISA\ub294 \ud328\uce58 \uc801\uc6a9\uc774 &#8230; <a title=\"\u7f8e CISA, \uc708\ub3c4\uc6b0 RDS \uc81c\ub85c\ub370\uc774 \uacbd\uace0\u2026\ub2e4\ud06c\uc6f9\uc11c 22\ub9cc\ub2ec\ub7ec \uac70\ub798\" class=\"read-more\" href=\"https:\/\/readtrends.com\/ko\/windows-rds-zero-day-exploit\/\" aria-label=\"\u7f8e CISA, \uc708\ub3c4\uc6b0 RDS \uc81c\ub85c\ub370\uc774 \uacbd\uace0\u2026\ub2e4\ud06c\uc6f9\uc11c 22\ub9cc\ub2ec\ub7ec \uac70\ub798\uc5d0 \ub300\ud574 \ub354 \uc790\uc138\ud788 \uc54c\uc544\ubcf4\uc138\uc694\">\ub354 \uc77d\uae30<\/a><\/p>\n","protected":false},"author":1,"featured_media":9901,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rank_math_title":"\u7f8e CISA, \uc708\ub3c4\uc6b0 RDS \ucde8\uc57d\uc810 \uacbd\uace0 \u2014 \ubcf4\uc548\ub274\uc2a4","rank_math_description":"CISA\uac00 \uc708\ub3c4\uc6b0 RDS \uc81c\ub85c\ub370\uc774(CVE-2026-21533)\ub97c KEV \ubaa9\ub85d\uc5d0 \ub4f1\uc7ac\ud558\uace0 \uae34\uae09 \ud328\uce58\uc640 RDS \ube44\ud65c\uc131\ud654, EDR \uac00\ub3d9\uc744 \uad8c\uace0\ud569\ub2c8\ub2e4. \ub2e4\ud06c\uc6f9\uc5d0\uc120 \uc775\uc2a4\ud50c\ub85c\uc787\uc774 22\ub9cc\ub2ec\ub7ec\uc5d0 \uac70\ub798 \uac8c\uc2dc\ub410\uc2b5\ub2c8\ub2e4.","rank_math_focus_keyword":"\uc708\ub3c4\uc6b0 RDS,\uc81c\ub85c\ub370\uc774,CVE-2026-21533,CISA,EDR","footnotes":""},"categories":[2],"tags":[],"class_list":["post-9910","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-top-stories"],"_links":{"self":[{"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/posts\/9910","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/comments?post=9910"}],"version-history":[{"count":0,"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/posts\/9910\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/media\/9901"}],"wp:attachment":[{"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/media?parent=9910"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/categories?post=9910"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/readtrends.com\/ko\/wp-json\/wp\/v2\/tags?post=9910"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}