May 2026: Azure Local Disconnected Operations (ALDO) Elevation of Privilege Vulnerability
CVE-2026-42822 Published on May 18, 2026

Azure Local Disconnected Operations (ALDO) Elevation of Privilege Vulnerability
Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network.

Vendor Advisory NVD

Weakness Type

What is an authentification Vulnerability?

When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

CVE-2026-42822 has been classified to as an authentification vulnerability or weakness.

Products Associated with CVE-2026-42822

stack.watch emails you whenever new vulnerabilities are published in Microsoft Azure Resource Manager or Microsoft Azure Local. Just hit a watch button to start following.

Microsoft Azure Resource Manager

Microsoft Azure Local

Affected Versions

Microsoft Azure Local:

Version 1.0.0 and below 2604.2.25645 is affected.

Microsoft Azure Resource Manager:

Version - is affected.

May 2026: Azure Local Disconnected Operations (ALDO) Elevation of Privilege VulnerabilityCVE-2026-42822 Published on May 18, 2026

Weakness Type

What is an authentification Vulnerability?

Products Associated with CVE-2026-42822

Affected Versions

May 2026: Azure Local Disconnected Operations (ALDO) Elevation of Privilege Vulnerability
CVE-2026-42822 Published on May 18, 2026