Microsoft HPC Pack Privilege Escalation Risk

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Microsoft HPC Pack Privilege Escalation Risk

CVE-2026-32184

Summary

An attacker with access to a system running Microsoft HPC Pack can exploit a flaw to gain elevated permissions. This could allow them to access sensitive data or take control of the system. To mitigate this risk, ensure that only trusted data is deserialized in HPC Pack.

Original title

Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elevate privileges locally.

Original description

Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-502 Deserialization of Untrusted Data

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32184

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026