CVE-2026-32168 — Vulnetix

Try Vulnetix Request Demo

CVE-2026-32168 PUBLISHED CVSS 7.800000190734863 HIGH

Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

Vendor	Product	Versions
Microsoft	Azure Monitor	1.0.0
microsoft	azure_monitor_agent	1.0.0

Timeline

Apr 14, 2026 CVE Published
Apr 14, 2026 PoC Published
Apr 14, 2026 PoC Published
Apr 15, 2026 Security Advisory
Apr 15, 2026 Security Advisory
May 5, 2026 Security Advisory

References

Azure Monitor Agent Elevation of Privilege Vulnerability vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-32168 advisory

Open in Interactive Console →