Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Windows Admin Center improper authentication privilege escalation (CVE-2026-26119)

Vulnerability
First reported
Last updated
Happening score
H score 15
1 unique sources, 1 articles

Summary

Hide ▲

Windows Admin Center is affected by CVE-2026-26119, a high-severity improper authentication flaw that can let an authorized attacker elevate privileges over a network. The issue can grant the attacker the rights of the user running the affected application, making it a meaningful privilege-escalation risk for managed Windows environments. Microsoft says the flaw was already patched in version 2511 released in December 2025, and it was rated CVSS 8.8/10.0.

Related Happenings

Windows BitLocker YellowKey mitigation guidance (CVE-2026-45585)

Advisory/Mitigation
First: 20.05.2026 10:31 Last: 20.05.2026 10:31 Sources 1

About this happening: Microsoft issued **mitigation guidance** for **YellowKey**, a **Windows BitLocker zero-day** that can expose **BitLocker-protected drives** before the security update is available...

Open Happening

Azure Backup for AKS privilege escalation flaw

Vulnerability
First: 16.05.2026 23:55 Last: 16.05.2026 23:55 Sources 1

About this happening: A **critical Azure Backup for AKS** privilege-escalation flaw was independently validated, exposing Kubernetes clusters to **cluster-admin** takeover from the low-privileged **Bac...

Open Happening

Microsoft Edge stops loading saved passwords into cleartext memory at startup

Security Tool/Service
First: 15.05.2026 17:49 Last: 15.05.2026 17:49 Sources 1

About this happening: **Microsoft Edge** is changing its built-in password manager so **saved passwords** are no longer loaded into **process memory in clear text** at startup, reducing the risk of loc...

Open Happening

Windows 11 BitLocker bypass YellowKey security flaw

Vulnerability
First: 14.05.2026 10:27 Last: 14.05.2026 10:27 Sources 1

About this happening: **YellowKey** is a **Windows BitLocker security feature bypass** tracked as **CVE-2026-45585** that can expose **BitLocker-protected drives** through the **Windows Recovery Enviro...

Latest development: 20.05.2026 10:31

Microsoft assigned CVE-2026-45585 to YellowKey, a Windows BitLocker security feature bypass, and recommended removing autofstx.exe from the Session Manager BootExecute REG_MULTI_SZ value, reestablishing BitLocker trust for WinRE, and moving already encrypted devices from TPM-only to TPM+PIN to require a pre-boot PIN.

Open Happening

Microsoft MDASH enters limited private preview for AI-driven vulnerability discovery at scale

Security Tool/Service
First: 13.05.2026 16:46 Last: 13.05.2026 16:46 Sources 1

About this happening: Microsoft's **MDASH** has entered **limited private preview**, adding a new **AI-driven vulnerability discovery** service that can validate and prove exploitable defects at scale....

Open Happening

Timeline

  1. 19.02.2026 19:40 2 articles · 3mo ago

    Microsoft discloses CVE-2026-26119 in Windows Admin Center

    Initial Disclosure

    Microsoft released an advisory for CVE-2026-26119, a high-severity improper-authentication flaw in Windows Admin Center that allows an authorized attacker to elevate privileges over a network and gain the rights of the user running the affected application. Microsoft said the issue had already been patched in Windows Admin Center version 2511 released in December 2025, and the vulnerability was rated CVSS 8.8/10.0. Microsoft credited Semperis researcher Andrea Pierini with discovering and reporting the flaw.

    Show sources
    Open in new tab