Description
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
Published: 2026-05-20
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from improper access control in Windows Admin Center, enabling an attacker with authorized credentials to elevate privileges over a network. An attacker can perform actions with higher privileges than intended, potentially bypassing security controls specified for the role. The flaw can lead to unauthorized modification or configuration changes within the Azure Portal environment.

Affected Systems

Microsoft Windows Admin Center in Azure Portal is affected. No specific version numbers are detailed; all installed instances should be verified for the CVE-2026-42834 fix.

Risk and Exploitability

The CVSS score of 7.8 classifies the issue as high severity. The EPSS score of < 1% indicates a very low probability of exploitation. The vulnerability is not listed in CISA’s KEV catalog, implying no publicly known exploits at this time. The attack vector requires an attacker to possess authorized access to Azure Portal; from there the attacker can elevate privileges across the network.

Generated by OpenCVE AI on June 1, 2026 at 21:28 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the Microsoft patch for Windows Admin Center in Azure Portal that addresses CVE-2026-42834.
  • Remove or restrict any Azure Portal role assignments that grant unnecessary administrative rights, ensuring least privilege for users.
  • Implement network segmentation or firewall rules to limit external access to the Windows Admin Center services, reducing the attack surface for privilege escalation.

Generated by OpenCVE AI on June 1, 2026 at 21:28 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 01 Jun 2026 19:00:00 +0000

Type Values Removed Values Added
Description Improper link resolution before file access ('link following') in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally. Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

Wed, 20 May 2026 18:30:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft windows Admin Center
CPEs cpe:2.3:a:microsoft:windows_admin_center:*:*:*:*:*:azure:*:*
Vendors & Products Microsoft windows Admin Center

Wed, 20 May 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 20 May 2026 13:15:00 +0000

Type Values Removed Values Added
Description Improper link resolution before file access ('link following') in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally.
Title Windows Admin Center in Azure Portal Elevation of Privilege Vulnerability
First Time appeared Microsoft
Microsoft azure Portal Windows Admin Center
Weaknesses CWE-59
CPEs cpe:2.3:a:microsoft:azure_portal_windows_admin_center:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft azure Portal Windows Admin Center
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C'}

Subscriptions

Microsoft Azure Portal Windows Admin Center Windows Admin Center
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-06-09T19:33:49.426Z

Reserved: 2026-04-30T14:51:12.703Z

Link: CVE-2026-42834

cve-icon Vulnrichment

Updated: 2026-05-20T13:41:52.420Z

cve-icon NVD

Status : Modified

Published: 2026-05-20T13:16:34.500

Modified: 2026-06-01T19:16:45.123

Link: CVE-2026-42834

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-01T21:30:26Z

Weaknesses
  • CWE-59

    Improper Link Resolution Before File Access ('Link Following')