VYPR
High severity7.8NVD Advisory· Published May 12, 2026· Updated May 18, 2026

CVE-2026-40381

CVE-2026-40381

Description

Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

2