Skip to main content

Azure Active Directory CVE-2026-45480

| EUVDEUVD-2026-38086 CRITICAL
Improper Authentication (CWE-287)
2026-06-19 secure@microsoft.com GHSA-rfvj-frr3-5qvh
10.0
CVSS 3.1 · Vendor: microsoft
Temporal: 8.7
Share

Severity by source

Vendor (microsoft) PRIMARY
10.0 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CIRCL (temporal)
8.7 HIGH
cvss
vuln.today AI
10.0 CRITICAL

Unauthenticated network-reachable auth bypass in an identity provider yields PR:N/UI:N/AC:L; scope changes because compromised IdP impacts downstream relying parties with full CIA loss.

3.1 AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Primary rating from Vendor (microsoft).

CVSS VectorVendor: microsoft

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Jun 19, 2026 - 21:39 vuln.today
CVE Published
Jun 19, 2026 - 21:16 nvd
CRITICAL 10.0

DescriptionCVE.org

Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privileges over a network.

AnalysisAI

Privilege escalation in Microsoft Azure Active Directory allows unauthenticated remote attackers to bypass authentication controls and gain elevated access across tenant boundaries. With a maximum CVSS score of 10.0 and a scope-changing impact, successful exploitation could compromise identity, access, and resources federated through Azure AD. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify target Azure AD tenant
Delivery
Send crafted request to auth endpoint
Exploit
Bypass identity verification
Execution
Obtain privileged token
Persist
Access federated resources cross-tenant
Impact
Exfiltrate data or persist via app registrations

Vulnerability AssessmentAI

Exploitation No special conditions - remote unauthenticated exploitation against default configurations of Azure Active Directory, per CVSS AV:N/AC:L/PR:N/UI:N. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H represents the worst-case profile: network-reachable, no authentication, no user interaction, low complexity, and a scope change with full CIA impact - hence the 10.0 score. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An unauthenticated attacker on the public internet crafts a request to an Azure AD authentication endpoint that bypasses identity verification, obtaining a token or session that asserts a privileged identity (for example, a Global Administrator) in a target tenant. Because the CVSS scope is Changed, the attacker then pivots from the identity plane to downstream Microsoft 365 mailboxes, SharePoint, Azure subscriptions, and any SaaS application federated to that tenant. …
Remediation Because Azure AD is a Microsoft-operated cloud service, the primary remediation path is server-side mitigation by Microsoft rather than a customer-installed patch; patch available per vendor advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45480, which customers should review to confirm whether tenant action (e.g., rotating refresh tokens, revoking sessions, updating libraries like MSAL/ADAL, or reconfiguring federation) is required. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

24 hours: Inventory all Azure AD environments and dependent services; enable enhanced monitoring for anomalous authentication patterns and cross-tenant access attempts. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-45480 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy