CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2026-42822

CVSS 10.0v3.1pub. 2026-05-18upd. 2026-05-21

Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network.

🤖 AI Analysis
How it works

The vulnerability classified as CWE-287 (Improper Authentication) involves improper identity verification in the Disconnected Operations mode of the Azure Local platform. A network-accessible attacker can bypass authentication mechanisms and obtain elevated privileges in the target environment. The network vector (AV:N), lack of requirements for attack complexity (AC:L), and no need for any initial privileges (PR:N) make the vulnerability trivial to exploit in a properly exposed network.

Impact

An attacker can obtain elevated privileges on the target system without prior authentication, which with full scope of impact on confidentiality, integrity, and availability (C:H/I:H/A:H) may result in complete takeover of resources managed by Azure Local or Azure Resource Manager.

Mitigation & patch

Apply patches available from the vendor in accordance with references published by Microsoft Security Response Center at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42822. Until the patch is deployed, consider restricting network access to Azure Local Disconnected Operations components only to trusted hosts and implement network segmentation.

Who is affected

Microsoft Azure Local (Disconnected Operations mode) and Microsoft Azure Resource Manager — specific versions indicated in vendor references (Microsoft Security Response Center).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Microsoft Azure Local

    APP
    Microsoft
    < 2604.2.25645
  • Microsoft Azure Resource Manager

    APP
    Microsoft
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2026-47280CRITICAL10.0PL ✓ten sam produkt

Obejście uwierzytelniania w Azure Resource Manager umożliwia eskalację uprawnień

CVE-2026-24304CRITICAL9.9PL ✓ten sam produkt

Nieprawidłowa kontrola dostępu w Azure Resource Manager — privilege escalation

CVE-2026-21228HIGH8.1ten sam produkt

Improper certificate validation in Azure Local allows an unauthorized attacker to execute code over a network.

CVE-2026-8398CRITICAL9.3⚠ KEVPL ✓ten sam vendor

Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów

CVE-2026-20963CRITICAL9.8⚠ KEVPL ✓ten sam vendor

RCE przez deserializację niezaufanych danych w Microsoft SharePoint Server