Information Disclosure Flaw in Windows Admin Center by Microsoft
CVE-2026-56185

6.5MEDIUM

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
14 July 2026

What is CVE-2026-56185?

An information disclosure vulnerability exists in Windows Admin Center due to improper authentication mechanisms. This flaw may allow a malicious actor, already authorized within the network, to exploit the vulnerability and access sensitive data without appropriate authorization. Organizations using vulnerable versions of Windows Admin Center should apply the recommended updates to safeguard their data integrity and network security.

Affected Version(s)

Windows Admin Center 1809.0 < 2.6.5.16

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.