CVE-2026-35438
Microsoft · Windows Admin Center
A missing authorization vulnerability in Microsoft Windows Admin Center allows an authenticated attacker to elevate privileges over the network.
Executive summary
A privilege escalation vulnerability in Microsoft Windows Admin Center poses a significant risk by allowing authorized users to gain unauthorized administrative control.
Vulnerability
This is an improper authorization vulnerability where an authenticated attacker can leverage existing network access to escalate their privilege level within the Windows Admin Center environment.
Business impact
Successful exploitation allows an attacker to gain elevated privileges, potentially leading to full system compromise or unauthorized access to sensitive administrative functions. With a CVSS score of 8.3, this high-severity vulnerability could facilitate lateral movement and the exfiltration of sensitive organizational data.
Remediation
Immediate Action: Identify and apply the latest security patches provided by Microsoft to the Windows Admin Center instances.
Proactive Monitoring: Review access logs for unusual administrative activity or unexpected privilege escalation events occurring within the management console.
Compensating Controls: Restrict access to the Windows Admin Center interface to trusted administrative network segments only.
Exploitation status
Public Exploit Available: false
Analyst recommendation
Given the potential for complete control over administrative interfaces, it is imperative that organizations prioritize the deployment of vendor-supplied patches. Administrators should audit current access controls to ensure the principle of least privilege is strictly enforced while awaiting the patch.