Unrated severityNVD Advisory· Published Jun 18, 2026
Azure Bot Service Elevation of Privilege Vulnerability
CVE-2026-32174
Description
Improper authentication in Azure Bot Service allows an authorized attacker to elevate privileges over a network.
Affected products
1Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32174mitrevendor-advisorypatch
News mentions
1- Microsoft Cloud Batch: Four CVEs Across Copilot, Dynamics 365, Azure Bot Service, and Cost ManagementVypr Intelligence · Jun 18, 2026