High severity8.6NVD Advisory· Published Apr 3, 2026· Updated Apr 6, 2026
CVE-2026-32173
CVE-2026-32173
Description
Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information over a network.
Affected products
2cpe:2.3:a:microsoft:azure_sre_agent:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:azure_sre_agent:-:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32173nvdVendor Advisory
News mentions
1- ⚡ Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & MoreThe Hacker News · Apr 27, 2026