Improper Authorization in Windows Admin Center by Microsoft
CVE-2026-58631

7.8HIGH

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
14 July 2026

What is CVE-2026-58631?

A vulnerability exists in Windows Admin Center that enables an authorized attacker to execute arbitrary code locally due to improper authorization mechanisms. This flaw may allow the attacker to manipulate the application and perform unauthorized actions, posing a risk to the integrity and security of the affected systems. It is essential for organizations using Windows Admin Center to apply relevant patches and take necessary precautions to mitigate the risks linked to this vulnerability.

Affected Version(s)

Windows Admin Center 1809.0 < 2.7.4

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.