CVE-2026-26123 Microsoft — Exploit & Vulnerability Details MEDIUM

Parameter	Value
CVSS	5.5 (MEDIUM)
Type	CWE-939
Vendor	Microsoft
Public PoC	No

Cwe is not in rca categories in Microsoft Authenticator allows an unauthorized attacker to disclose information locally.

Attack Parameters

Attack Vector

Local

Нужен локальный доступ

Attack Complexity

Low

Легко эксплуатировать

Privileges Required

None

Права не нужны

User Interaction

Required

Нужно действие пользователя

Impact Assessment

Confidentiality

High

Полная утечка данных

Integrity

None

Нет модификации данных

Availability

None

Нет нарушения работы

CVSS Vector v3.1

Weakness Type (CWE)

CWE-939

References 1

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26123

secure@microsoft.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-26144

Microsoft

7.5

CVE-2026-26134

Microsoft

7.8

CVE-2026-26114

Microsoft

8.8

CVE-2026-26113

Microsoft

8.4

CVE-2026-26112

Microsoft

7.8

Menu

CVE-2026-26123

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-26144

CVE-2026-26134

CVE-2026-26114

CVE-2026-26113

CVE-2026-26112

CVE Details

Editor's Choice

Menu

CVE-2026-26123

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-26144

CVE-2026-26134

CVE-2026-26114

CVE-2026-26113

CVE-2026-26112

CVE Details

Editor's Choice

Stay informed on cybersecurity