Skip to main content

Windows Admin Center

13 CVEs product

Monthly

CVE-2026-56197 HIGH PATCH Exploit Unlikely This Week

Authenticated remote code execution in Microsoft Windows Admin Center (CWE-77) lets an attacker with low-privilege access inject and run arbitrary commands over the network, yielding full confidentiality, integrity, and availability compromise (CVSS 8.8). Microsoft has released a patch; there is no public exploit identified at time of analysis and the flaw is not listed in CISA KEV.

Microsoft Command Injection Windows Admin Center
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2026-56196 HIGH PATCH Exploit Unlikely This Week

Remote code execution in Microsoft Windows Admin Center allows an authenticated attacker to run arbitrary code over the network by exploiting a relative path traversal (CWE-23) flaw. Any user holding valid low-privilege credentials to the WAC gateway can leverage the traversal to break out of the intended file path and achieve full compromise (confidentiality, integrity, and availability impact all High). Microsoft has published a patch via MSRC; there is no public exploit identified at time of analysis and the CVE is not listed in CISA KEV.

Microsoft Path Traversal Windows Admin Center
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2026-58631 HIGH PATCH Exploit Likely This Week

Local privilege-to-code-execution in Microsoft Windows Admin Center lets an already-authenticated, lower-privileged user abuse an improper authorization check (CWE-285) to run arbitrary code on the host where the management tool is installed. Rated CVSS 7.8 with high confidentiality, integrity, and availability impact, it requires local access and existing low-level privileges rather than remote unauthenticated reach. No public exploit identified at time of analysis, and it is not listed in CISA KEV, but Microsoft has released a fix via the MSRC update guide.

Authentication Bypass Microsoft Windows Admin Center
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2026-57107 HIGH PATCH Exploit Unlikely This Week

Local privilege escalation in Microsoft Windows Admin Center allows an already-authenticated, low-privileged attacker to elevate to higher privileges by abusing an improper authentication weakness (CWE-287). Any host running the management tool is affected, and successful exploitation yields full confidentiality, integrity, and availability impact on the local system. There is no public exploit identified at time of analysis and it is not listed in CISA KEV, but Microsoft has released a fix.

Authentication Bypass Microsoft Windows Admin Center
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2026-56185 MEDIUM PATCH Exploit Unlikely This Month

Improper authentication in Windows Admin Center allows an authorized attacker to disclose information over a network.

Authentication Bypass Microsoft Windows Admin Center
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2026-56169 HIGH PATCH Exploit Unlikely This Week

Privilege elevation in Microsoft Windows Admin Center allows an already-authenticated (low-privileged) network attacker to bypass improper authentication controls and gain higher privileges, exposing high-value confidentiality and integrity impact. Rated CVSS 8.1 with low attack complexity and no user interaction, the flaw is remotely reachable but requires an existing authorized session. No public exploit identified at time of analysis; Microsoft has released a fix via the MSRC update guide.

Authentication Bypass Microsoft Windows Admin Center
NVD VulDB
CVSS 3.1
8.1
EPSS
0.5%
CVE-2026-23660 HIGH PATCH This Week

Windows Admin Center in Azure Portal contains an access control flaw that enables local authenticated users to escalate their privileges. An attacker with valid credentials can exploit this vulnerability to gain elevated permissions on the system. No patch is currently available for this issue.

Authentication Bypass Microsoft Windows Admin Center Windows
NVD VulDB
CVSS 3.1
7.8
EPSS
0.0%
CVE-2026-26119 HIGH PATCH This Week

Windows Admin Center's authentication mechanism can be bypassed by authenticated network users to gain elevated privileges on affected Windows systems. An attacker with valid credentials could exploit this weakness to escalate their access level without additional user interaction. A patch is available to remediate this high-severity vulnerability.

Windows Windows Admin Center Microsoft
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2026-20965 HIGH PATCH This Week

Windows Admin Center fails to properly validate cryptographic signatures, enabling high-privileged users to bypass security controls and gain elevated system access on local machines. This vulnerability affects both Windows and Windows Admin Center installations and requires an authenticated attacker with administrative credentials to exploit. No patch is currently available for this issue.

Windows Windows Admin Center
NVD
CVSS 3.1
7.5
EPSS
0.0%
CVE-2025-29819 MEDIUM This Month

External control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Windows Admin Center Windows
NVD
CVSS 3.1
6.2
EPSS
1.3%
CVE-2023-29347 MEDIUM PATCH This Month

Windows Admin Center Spoofing Vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Microsoft Windows Admin Center
NVD
CVSS 3.1
6.8
EPSS
1.9%
CVE-2021-27066 MEDIUM PATCH This Month

Windows Admin Center Security Feature Bypass Vulnerability. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Microsoft Authentication Bypass Windows Admin Center
NVD
CVSS 3.1
4.3
EPSS
2.8%
CVE-2019-0813 CRITICAL PATCH Act Now

An elevation of privilege vulnerability exists when Windows Admin Center improperly impersonates operations in certain situations, aka 'Windows Admin Center Elevation of Privilege Vulnerability'. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft Information Disclosure Windows Admin Center
NVD
CVSS 3.0
9.8
EPSS
3.5%
EPSS 1% CVSS 8.8
HIGH PATCH Exploit Unlikely This Week

Authenticated remote code execution in Microsoft Windows Admin Center (CWE-77) lets an attacker with low-privilege access inject and run arbitrary commands over the network, yielding full confidentiality, integrity, and availability compromise (CVSS 8.8). Microsoft has released a patch; there is no public exploit identified at time of analysis and the flaw is not listed in CISA KEV.

Microsoft Command Injection Windows Admin Center
NVD
EPSS 1% CVSS 8.8
HIGH PATCH Exploit Unlikely This Week

Remote code execution in Microsoft Windows Admin Center allows an authenticated attacker to run arbitrary code over the network by exploiting a relative path traversal (CWE-23) flaw. Any user holding valid low-privilege credentials to the WAC gateway can leverage the traversal to break out of the intended file path and achieve full compromise (confidentiality, integrity, and availability impact all High). Microsoft has published a patch via MSRC; there is no public exploit identified at time of analysis and the CVE is not listed in CISA KEV.

Microsoft Path Traversal Windows Admin Center
NVD
EPSS 0% CVSS 7.8
HIGH PATCH Exploit Likely This Week

Local privilege-to-code-execution in Microsoft Windows Admin Center lets an already-authenticated, lower-privileged user abuse an improper authorization check (CWE-285) to run arbitrary code on the host where the management tool is installed. Rated CVSS 7.8 with high confidentiality, integrity, and availability impact, it requires local access and existing low-level privileges rather than remote unauthenticated reach. No public exploit identified at time of analysis, and it is not listed in CISA KEV, but Microsoft has released a fix via the MSRC update guide.

Authentication Bypass Microsoft Windows Admin Center
NVD
EPSS 0% CVSS 7.8
HIGH PATCH Exploit Unlikely This Week

Local privilege escalation in Microsoft Windows Admin Center allows an already-authenticated, low-privileged attacker to elevate to higher privileges by abusing an improper authentication weakness (CWE-287). Any host running the management tool is affected, and successful exploitation yields full confidentiality, integrity, and availability impact on the local system. There is no public exploit identified at time of analysis and it is not listed in CISA KEV, but Microsoft has released a fix.

Authentication Bypass Microsoft Windows Admin Center
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH Exploit Unlikely This Month

Improper authentication in Windows Admin Center allows an authorized attacker to disclose information over a network.

Authentication Bypass Microsoft Windows Admin Center
NVD
EPSS 0% CVSS 8.1
HIGH PATCH Exploit Unlikely This Week

Privilege elevation in Microsoft Windows Admin Center allows an already-authenticated (low-privileged) network attacker to bypass improper authentication controls and gain higher privileges, exposing high-value confidentiality and integrity impact. Rated CVSS 8.1 with low attack complexity and no user interaction, the flaw is remotely reachable but requires an existing authorized session. No public exploit identified at time of analysis; Microsoft has released a fix via the MSRC update guide.

Authentication Bypass Microsoft Windows Admin Center
NVD VulDB
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Windows Admin Center in Azure Portal contains an access control flaw that enables local authenticated users to escalate their privileges. An attacker with valid credentials can exploit this vulnerability to gain elevated permissions on the system. No patch is currently available for this issue.

Authentication Bypass Microsoft Windows Admin Center +1
NVD VulDB
EPSS 0% CVSS 8.8
HIGH PATCH This Week

Windows Admin Center's authentication mechanism can be bypassed by authenticated network users to gain elevated privileges on affected Windows systems. An attacker with valid credentials could exploit this weakness to escalate their access level without additional user interaction. A patch is available to remediate this high-severity vulnerability.

Windows Windows Admin Center Microsoft
NVD
EPSS 0% CVSS 7.5
HIGH PATCH This Week

Windows Admin Center fails to properly validate cryptographic signatures, enabling high-privileged users to bypass security controls and gain elevated system access on local machines. This vulnerability affects both Windows and Windows Admin Center installations and requires an authenticated attacker with administrative credentials to exploit. No patch is currently available for this issue.

Windows Windows Admin Center
NVD
EPSS 1% CVSS 6.2
MEDIUM This Month

External control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Windows Admin Center +1
NVD
EPSS 2% CVSS 6.8
MEDIUM PATCH This Month

Windows Admin Center Spoofing Vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Microsoft Windows Admin Center
NVD
EPSS 3% CVSS 4.3
MEDIUM PATCH This Month

Windows Admin Center Security Feature Bypass Vulnerability. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Microsoft Authentication Bypass Windows Admin Center
NVD
EPSS 4% CVSS 9.8
CRITICAL PATCH Act Now

An elevation of privilege vulnerability exists when Windows Admin Center improperly impersonates operations in certain situations, aka 'Windows Admin Center Elevation of Privilege Vulnerability'. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft Information Disclosure Windows Admin Center
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy