Azure Monitor Agent Allows Local Privilege Escalation

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Azure Monitor Agent Allows Local Privilege Escalation

CVE-2026-32168

Summary

The Azure Monitor Agent has a flaw that lets an authorized user take control of a Windows system. This is a concern because it allows someone with legitimate access to the system to do more than they should. Users should update their Azure Monitor Agent to the latest version to fix this issue.

Original title

Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

Original description

Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-20 Improper Input Validation

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32168

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026