Dismissed
(exclusively hosted service)
Permalink
CVE-2026-26138
8.6 HIGH
- CVSS version: 3.1
- Attack vector (AV):
- Attack complexity (AC):
- Privileges required (PR):
- User interaction (UI):
- Scope (S):
- Confidentiality impact (C):
- Integrity impact (I):
- Availability impact (A):
Microsoft Purview Elevation of Privilege Vulnerability
Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network.
References
- Microsoft Purview Elevation of Privilege Vulnerability vendor-advisory patch
Affected products
Microsoft Purview
- ==-