CVE-2026-26118

Published: Mar 10, 2026Modified: Mar 13, 2026

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: secure@microsoft.com

Description

Server-side request forgery (ssrf) in Azure MCP Server allows an authorized attacker to elevate privileges over a network.

Affected (17)

Products: Microsoft: Azure Mcp Server

1 product

Azure Mcp Server

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Microsoft Azure Mcp Server	Before 2.0.0
Microsoft Azure Mcp Server	Version 2.0.0 beta10
Microsoft Azure Mcp Server	Version 2.0.0 beta11
Microsoft Azure Mcp Server	Version 2.0.0 beta12
Microsoft Azure Mcp Server	Version 2.0.0 beta13
Microsoft Azure Mcp Server	Version 2.0.0 beta14
Microsoft Azure Mcp Server	Version 2.0.0 beta15
Microsoft Azure Mcp Server	Version 2.0.0 beta16
Microsoft Azure Mcp Server	Version 2.0.0 beta1
Microsoft Azure Mcp Server	Version 2.0.0 beta2
Microsoft Azure Mcp Server	Version 2.0.0 beta3
Microsoft Azure Mcp Server	Version 2.0.0 beta4
Microsoft Azure Mcp Server	Version 2.0.0 beta5
Microsoft Azure Mcp Server	Version 2.0.0 beta6
Microsoft Azure Mcp Server	Version 2.0.0 beta7
Microsoft Azure Mcp Server	Version 2.0.0 beta8
Microsoft Azure Mcp Server	Version 2.0.0 beta9

Related CWEs

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (1)

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26118

Source: secure@microsoft.com

Vendor Advisory

Timeline

No history available yet.