Multiple Azure Vulnerabilities Allow Privilege Escalation
Summary
CERT-FR issued advisory CERTFR-2026-AVI-0444 alerting organizations to multiple privilege escalation vulnerabilities in Microsoft Azure. Five CVEs (CVE-2026-32167, CVE-2026-32168, CVE-2026-32171, CVE-2026-32176, CVE-2026-32192) were disclosed in Microsoft Azure security bulletins on April 14, 2026. Affected systems include Azure Logic Apps and Azure Monitor Agent versions prior to 1.35.9 and 1.41.0. Organizations are advised to consult Microsoft security bulletins for patch availability.
What changed
CERT-FR published security advisory CERTFR-2026-AVI-0444 disclosing five privilege escalation vulnerabilities in Microsoft Azure services. The vulnerabilities affect Azure Logic Apps and Azure Monitor Agent versions prior to 1.35.9 and 1.41.0. Attackers who successfully exploit these vulnerabilities could escalate privileges within Azure environments, potentially gaining unauthorized access to sensitive data or administrative functions.
Organizations using Azure Logic Apps or Azure Monitor Agent should immediately identify affected deployments and apply patches available through Microsoft's security bulletins. The privilege escalation risk is particularly significant for organizations with multi-user Azure environments or those storing sensitive data in Azure services. IT security teams should prioritize patching and monitor for indicators of exploitation given the potential for complete environment compromise.
What to do next
- Identify instances of Azure Logic Apps and Azure Monitor Agent in your environment
- Check Azure Monitor Agent versions against affected thresholds (prior to 1.35.9 and 1.41.0)
- Apply patches referenced in Microsoft security bulletins
Archived snapshot
Apr 15, 2026GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.
Premier Ministre S.G.D.S.N
Agence nationale
de la sécurité des
systèmes d'information
Paris, le 15 avril 2026 N° CERTFR-2026-AVI-0444 Affaire suivie par: CERT-FR
Avis du CERT-FR
Objet: Multiples vulnérabilités dans Microsoft Azure
Gestion du document
| Référence | CERTFR-2026-AVI-0444 |
| Titre | Multiples vulnérabilités dans Microsoft Azure |
| Date de la première version | 15 avril 2026 |
| Date de la dernière version | 15 avril 2026 |
| Source(s) | Bulletin de sécurité Microsoft Azure CVE-2026-32167 du 14 avril 2026
Bulletin de sécurité Microsoft Azure CVE-2026-32168 du 14 avril 2026
Bulletin de sécurité Microsoft Azure CVE-2026-32171 du 14 avril 2026
Bulletin de sécurité Microsoft Azure CVE-2026-32176 du 14 avril 2026
Bulletin de sécurité Microsoft Azure CVE-2026-32192 du 14 avril 2026 |
Une gestion de version détaillée se trouve à la fin de ce document.
Risque
- Élévation de privilèges
Systèmes affectés
- Azure Logic Apps
- Azure Monitor Agent versions antérieures à 1.35.9
- Azure Monitor Agent versions antérieures à 1.41.0
Résumé
De multiples vulnérabilités ont été découvertes dans Microsoft Azure. Elles permettent à un attaquant de provoquer une élévation de privilèges.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Documentation
- Bulletin de sécurité Microsoft Azure CVE-2026-32167 du 14 avril 2026
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32167
- Bulletin de sécurité Microsoft Azure CVE-2026-32168 du 14 avril 2026
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32168
- Bulletin de sécurité Microsoft Azure CVE-2026-32171 du 14 avril 2026
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32171
- Bulletin de sécurité Microsoft Azure CVE-2026-32176 du 14 avril 2026
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32176
- Bulletin de sécurité Microsoft Azure CVE-2026-32192 du 14 avril 2026
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32192
- Référence CVE CVE-2026-32167
- https://www.cve.org/CVERecord?id=CVE-2026-32167
- Référence CVE CVE-2026-32168
- https://www.cve.org/CVERecord?id=CVE-2026-32168
- Référence CVE CVE-2026-32171
- https://www.cve.org/CVERecord?id=CVE-2026-32171
- Référence CVE CVE-2026-32176
- https://www.cve.org/CVERecord?id=CVE-2026-32176
- Référence CVE CVE-2026-32192
- https://www.cve.org/CVERecord?id=CVE-2026-32192
Gestion détaillée du document
- le 15 avril 2026 Version initiale
Related changes
Get daily alerts for CERT-FR Security Advisories
Daily digest delivered to your inbox.
Free. Unsubscribe anytime.
About this page
Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission
Source document text, dates, docket IDs, and authority are extracted directly from ANSSI.
The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.
Classification
Who this affects
Taxonomy
Browse Categories
Get alerts for this source
We'll email you when CERT-FR Security Advisories publishes new changes.
Subscribed!
Optional. Filters your digest to exactly the updates that matter to you.