PT-2026-24327 · Microsoft · Azure Windows Virtual Machine Agent+1
Ben Zamir
+1
·
Published
2026-03-10
·
Updated
2026-03-31
·
CVE-2026-26117
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Azure Windows Virtual Machine Agent (affected versions not specified)
Azure Arc on Windows (affected versions not specified)
Description
A security issue exists in Azure Windows Virtual Machine Agent and Azure Arc on Windows that allows an attacker to bypass authentication using an alternate path or channel. Successful exploitation can lead to local privilege escalation, potentially allowing a low-privileged user to gain higher-level access to the system. A compromised machine running Azure Arc can allow an attacker to abuse the Arc identity flow and potentially pivot into the Azure environment.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
LPE
Authentication Bypass Using an Alternate Path or Channel
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Azure Arc On Windows
Azure Windows Virtual Machine Agent