{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-32211", "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "state": "PUBLISHED", "assignerShortName": "microsoft", "dateReserved": "2026-03-11T01:49:58.659Z", "datePublished": "2026-04-02T23:27:01.785Z", "dateUpdated": "2026-04-03T17:22:49.607Z"}, "containers": {"cna": {"title": "Azure MCP Server Information Disclosure Vulnerability", "datePublic": "2026-04-02T14:00:00.000Z", "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:microsoft:azure_web_apps:*:*:*:*:*:*:*:*", "versionStartIncluding": "-"}]}]}], "affected": [{"vendor": "Microsoft", "product": "Azure Web Apps", "versions": [{"version": "-", "status": "affected"}]}], "descriptions": [{"value": "Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network.", "lang": "en-US"}], "problemTypes": [{"descriptions": [{"description": "CWE-306: Missing Authentication for Critical Function", "lang": "en-US", "type": "CWE", "cweId": "CWE-306"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2026-04-03T17:22:49.607Z"}, "references": [{"name": "Azure MCP Server Information Disclosure Vulnerability", "tags": ["vendor-advisory", "patch"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32211"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseSeverity": "CRITICAL", "baseScore": 9.1, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C"}}], "tags": ["exclusively-hosted-service"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-32211", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-03T13:43:41.345353Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-03T13:56:03.565Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"cna": {"tags": ["exclusively-hosted-service"], "title": "Azure MCP Server Information Disclosure Vulnerability", "metrics": [{"format": "CVSS", "cvssV3_1": {"version": "3.1", "baseScore": 9.1, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}], "affected": [{"vendor": "Microsoft", "product": "Azure Web Apps", "versions": [{"status": "affected", "version": "-"}]}], "datePublic": "2026-04-02T14:00:00.000Z", "references": [{"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32211", "name": "Azure MCP Server Information Disclosure Vulnerability", "tags": ["vendor-advisory", "patch"]}], "descriptions": [{"lang": "en-US", "value": "Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network."}], "problemTypes": [{"descriptions": [{"lang": "en-US", "type": "CWE", "cweId": "CWE-306", "description": "CWE-306: Missing Authentication for Critical Function"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:azure_web_apps:*:*:*:*:*:*:*:*", "vulnerable": true, "versionStartIncluding": "-"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2026-04-02T23:27:01.785Z"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-32211", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-03T13:43:41.345353Z"}}}], "providerMetadata": {"shortName": "CISA-ADP", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "dateUpdated": "2026-04-03T13:48:18.747Z"}}]}, "cveMetadata": {"cveId": "CVE-2026-32211", "state": "PUBLISHED", "dateUpdated": "2026-04-02T23:27:01.785Z", "dateReserved": "2026-03-11T01:49:58.659Z", "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "datePublished": "2026-04-02T23:27:01.785Z", "assignerShortName": "microsoft"}, "dataVersion": "5.2"}

{"cveTags": [{"sourceIdentifier": "secure@microsoft.com", "tags": ["exclusively-hosted-service"]}], "descriptions": [{"lang": "en", "value": "Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network."}], "id": "CVE-2026-32211", "lastModified": "2026-04-03T16:10:23.730", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "secure@microsoft.com", "type": "Primary"}]}, "published": "2026-04-03T00:16:04.703", "references": [{"source": "secure@microsoft.com", "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32211"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "secure@microsoft.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": null}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Azure Web Apps", "source": "cna", "vendor": "Microsoft"}, "product": "azure_web_apps", "vendor": "microsoft"}], "analysis": {"en": {"generated_at": "2026-04-03T02:20:58.185303+00:00", "value": {"mitigation_remediation": ["As the vulnerability is missing authentication, Microsoft recommends applying the latest security update for Azure Web Apps as documented on the Microsoft Security Response Center site. Deploy the update from the provided reference link and verify that the MCP Server component now requires authentication before allowing any data disclosure. After the patch, review Azure portal settings to ensure that the MCP Server is only accessible from trusted networks. Finally, monitor Azure activity logs for any anomalous read attempts to the affected service."], "summary": {"action": "Apply Patch", "impact": "Remote Information Disclosure"}, "threat_synthesis": {"affected_systems": "The affected product is Microsoft Azure Web Apps, specifically the Azure MCP Server component. No particular version information is provided, so all instances using the vulnerable MCP Server implementation are potentially susceptible.", "description_and_impact": "This vulnerability results from missing authentication for a critical function in Azure MCP Server, allowing an attacker who is not authenticated to read sensitive information over the network. The lack of access control means that the confidentiality of data stored or processed by the service is compromised, potentially exposing configuration details, user data, or other system information.", "risk_and_exploitability": "The CVSS score of 9.1 classifies this issue as critical, indicating a high potential impact. Although EPSS data not available and it is not listed in the CISA KEV catalog, the vulnerability can be exploited remotely by an unauthenticated attacker with network access to the Azure service. The lack of authentication checks in the critical function means exploitation requires no prior compromise or privileged credentials, making it a high\u2011risk threat."}}}}, "created": "2026-04-03T07:31:16.594214+00:00", "updated": "2026-04-03T09:16:04.585980+00:00", "vendors": ["microsoft", "microsoft$PRODUCT$azure_web_apps"]}