CVE-2026-32204
EUVD-2026-2957412.05.2026, 18:17
External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| microsoft | azure_monitor_agent | 𝑥 < 1.14.0 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| microsoft | azure_monitor | 1.0.0 ≤ 𝑥 < 1.14.0 | CNA |
Common Weakness Enumeration
- CWE-73 - External Control of File Name or PathThe software allows user input to control or influence paths or file names that are used in filesystem operations.
- CWE-610 - Externally Controlled Reference to a Resource in Another SphereThe product uses an externally controlled name or reference that resolves to a resource that is outside of the intended control sphere.