May 2026: Windows Admin Center in Azure Portal Elevation of Privilege Vulnerability
CVE-2026-41086 Published on May 12, 2026

Windows Admin Center in Azure Portal Elevation of Privilege Vulnerability
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

Vendor Advisory NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2026-41086 has been classified to as an Authorization vulnerability or weakness.

Products Associated with CVE-2026-41086

Want to know whenever a new CVE is published for Microsoft Azure Portal Windows Admin Center? stack.watch will email you.

Microsoft Azure Portal Windows Admin Center

Affected Versions

Microsoft Windows Admin Center in Azure Portal:

Version 1.0 and below 2.6.7 is affected.

May 2026: Windows Admin Center in Azure Portal Elevation of Privilege VulnerabilityCVE-2026-41086 Published on May 12, 2026

Weakness Type

What is an Authorization Vulnerability?

Products Associated with CVE-2026-41086

Affected Versions

May 2026: Windows Admin Center in Azure Portal Elevation of Privilege Vulnerability
CVE-2026-41086 Published on May 12, 2026