CVE-2026-26117
HIGH SEVERITYCVSS Score & Metrics
Base Score
7.8 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Description
Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-288
Source
NVD
Vendor
microsoft
Product
arc_enabled_servers_azure_connected_machine_agent
Discussion (0)
Add Comment
No comments yet. Be the first!