Cyber Posture

CVE-2026-32213

Critical

Published: 03 April 2026

Published
03 April 2026
Modified
06 April 2026
KEV Added
Patch
CVSS Score 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score 0.0006 19.0th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-32213 is a critical-severity Improper Authorization (CWE-285) vulnerability in Microsoft Azure Ai Foundry. Its CVSS base score is 10.0 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 19.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as Other AI Platforms.

The strongest mitigations our analysis identified are NIST 800-53 AC-24 (Access Control Decisions) and AC-3 (Access Enforcement).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploitation for Privilege Escalation (T1068) and 1 other technique. What defenders deploy: see the NIST 800-53 controls recommended below.
Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

AC-3 Access Enforcement good match
prevent

Enforces approved authorizations for access to system resources, directly preventing exploitation of improper authorization leading to privilege escalation.

AC-6 Least Privilege good match
prevent

Employs least privilege to restrict unauthorized attackers from elevating to high-level access even if authorization checks fail.

AC-24 Access Control Decisions good match
prevent

Requires correct access control decisions for resources by defined roles, mitigating incorrect authorization vulnerabilities like CWE-285 and CWE-863.

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
attack.mitre.org →
T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
attack.mitre.org →
Why these techniques?

Improper authorization in public-facing Azure AI Foundry enables unauthenticated remote attackers to escalate privileges (T1068 Exploitation for Privilege Escalation via T1190 Exploit Public-Facing Application).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

Improper authorization in Azure AI Foundry allows an unauthorized attacker to elevate privileges over a network.

Deeper analysisAI

CVE-2026-32213 is an improper authorization vulnerability affecting Azure AI Foundry, as documented with CWEs-285 (Improper Authorization) and CWE-863 (Incorrect Authorization). Published on 2026-04-03, it enables an unauthorized attacker to elevate privileges over a network. The issue carries a critical CVSS v3.1 base score of 10.0 (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H), highlighting its severe potential impact.

The vulnerability can be exploited by any unauthenticated attacker with network access to the affected Azure AI Foundry instance, requiring low complexity and no user interaction. Successful exploitation allows privilege escalation, granting the attacker high-level access that compromises confidentiality, integrity, and availability across a changed scope.

Microsoft's Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32213 details recommended mitigations and available patches for addressing this vulnerability.

Details

CWE(s)
CWE-285CWE-863

Affected Products

microsoft
azure ai foundry
all versions

AI Security AnalysisAI

AI Category
Other AI Platforms
Risk Domain
N/A
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: ai

CVEs Like This One

CVE-2026-35435Same product: Microsoft Azure Ai Foundry
CVE-2026-33105Same vendor: Microsoft
CVE-2025-53792Same vendor: Microsoft
CVE-2025-64655Same vendor: Microsoft
CVE-2026-24305Same vendor: Microsoft
CVE-2025-26683Same vendor: Microsoft
CVE-2026-20960Same vendor: Microsoft
CVE-2026-40372Same vendor: Microsoft
CVE-2025-21275Same vendor: Microsoft
CVE-2025-24053Same vendor: Microsoft

References