Microsoft Windows Admin Center
8 CVEs affecting Microsoft Windows Admin Center. Latest disclosed: 2026-05-12. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-26119 | High | 8.8 | 2026-02-17 | Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges over a network. |
CVE-2023-29347 | High | 8.7 | 2023-07-11 | Windows Admin Center Spoofing Vulnerability |
CVE-2026-35438 | High | 8.3 | 2026-05-12 | Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network. |
CVE-2025-64669 | High | 7.8 | 2025-12-11 | Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges locally. |
CVE-2025-29819 | Medium | 6.2 | 2025-04-08 | External control of file name or path in Azure Portal Windows Admin Center allows an unauthorized attacker to disclose information locally. |
CVE-2026-32196 | Medium | 6.1 | 2026-04-14 | Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an unauthorized attacker to perform spoofin… |
CVE-2021-27066 | Medium | 4.3 | 2021-03-11 | Windows Admin Center Security Feature Bypass Vulnerability |
CVE-2019-0813 | | 2019-04-09 | An elevation of privilege vulnerability exists when Windows Admin Center improperly impersonates operations in certain situations, aka 'Windows Admin Center El… |