{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-32211", "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "state": "PUBLISHED", "assignerShortName": "microsoft", "dateReserved": "2026-03-11T01:49:58.659Z", "datePublished": "2026-04-02T23:27:01.785Z", "dateUpdated": "2026-05-12T17:39:58.115Z"}, "containers": {"cna": {"title": "Azure MCP Server Information Disclosure Vulnerability", "datePublic": "2026-04-02T14:00:00.000Z", "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:microsoft:azure_web_apps:*:*:*:*:*:*:*:*", "versionStartIncluding": "-"}]}]}], "affected": [{"vendor": "Microsoft", "product": "Azure Web Apps", "versions": [{"version": "-", "status": "affected"}]}], "descriptions": [{"value": "Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network.", "lang": "en-US"}], "problemTypes": [{"descriptions": [{"description": "CWE-306: Missing Authentication for Critical Function", "lang": "en-US", "type": "CWE", "cweId": "CWE-306"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2026-05-12T17:39:58.115Z"}, "references": [{"name": "Azure MCP Server Information Disclosure Vulnerability", "tags": ["vendor-advisory", "patch"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32211"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseSeverity": "CRITICAL", "baseScore": 9.1, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C"}}], "tags": ["exclusively-hosted-service"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-03T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2026-32211"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-04T03:55:20.716Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-32211", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-03T13:43:41.345353Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-03T13:48:18.747Z"}}], "cna": {"tags": ["exclusively-hosted-service"], "title": "Azure MCP Server Information Disclosure Vulnerability", "metrics": [{"format": "CVSS", "cvssV3_1": {"version": "3.1", "baseScore": 9.1, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}], "affected": [{"vendor": "Microsoft", "product": "Azure Web Apps", "versions": [{"status": "affected", "version": "-"}]}], "datePublic": "2026-04-02T14:00:00.000Z", "references": [{"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32211", "name": "Azure MCP Server Information Disclosure Vulnerability", "tags": ["vendor-advisory", "patch"]}], "descriptions": [{"lang": "en-US", "value": "Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network."}], "problemTypes": [{"descriptions": [{"lang": "en-US", "type": "CWE", "cweId": "CWE-306", "description": "CWE-306: Missing Authentication for Critical Function"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:azure_web_apps:*:*:*:*:*:*:*:*", "vulnerable": true, "versionStartIncluding": "-"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2026-05-12T17:39:58.115Z"}}}, "cveMetadata": {"cveId": "CVE-2026-32211", "state": "PUBLISHED", "dateUpdated": "2026-05-12T17:39:58.115Z", "dateReserved": "2026-03-11T01:49:58.659Z", "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "datePublished": "2026-04-02T23:27:01.785Z", "assignerShortName": "microsoft"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:azure_web_apps:-:*:*:*:*:*:*:*", "matchCriteriaId": "4F7255ED-CCC0-4FF2-B197-C55C4B80EEFD", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [{"sourceIdentifier": "secure@microsoft.com", "tags": ["exclusively-hosted-service"]}], "descriptions": [{"lang": "en", "value": "Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network."}], "id": "CVE-2026-32211", "lastModified": "2026-04-06T18:08:55.450", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "secure@microsoft.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-04-03T00:16:04.703", "references": [{"source": "secure@microsoft.com", "tags": ["Vendor Advisory"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32211"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "secure@microsoft.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": null}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Azure Web Apps", "source": "cna", "vendor": "Microsoft"}, "product": "azure_web_apps", "vendor": "microsoft"}], "analysis": {"en": {"generated_at": "2026-04-07T02:53:20.482133+00:00", "value": {"mitigation_remediation": ["Apply the patch or update published by Microsoft for Azure Web Apps that addresses the missing authentication flaw.", "Check the Microsoft Security Response Center update guide for CVE-2026-32211 and install the recommended fix.", "Monitor Microsoft advisories for any subsequent security updates related to Azure Web Apps.", "Limit network access to the Azure MCP Server to trusted networks to reduce exposure."], "summary": {"action": "Patch Immediately", "impact": "Information Disclosure"}, "threat_synthesis": {"affected_systems": "Microsoft Azure Web Apps is the affected product. No specific version numbers are listed, so any deployment that includes the MCP Server component may be vulnerable until a patch is applied.", "description_and_impact": "Missing authentication for a critical function in Azure MCP Server allows an unauthorized attacker who can reach the server over a network to read sensitive information. The flaw falls under the missing authentication weakness (CWE-306) and can lead to a serious breach of confidentiality by exposing data that Azure Web Apps stores or processes. The impact is equivalent to that of an authenticated user, giving attackers the same level of access to the system's data.", "risk_and_exploitability": "The vulnerability has a CVSS base score of 9.1, indicating a critical level of risk. The EPSS score is below 1%, suggesting a low probability of current exploitation, and it is not listed in the CISA KEV catalog, meaning no known public exploitation. Attackers can exploit the flaw from any network location that can reach the MCP Server, as no authentication is required, lowering the barrier to exploitation. Prompt patching is therefore essential."}}}}, "created": "2026-04-03T07:31:16.594214+00:00", "updated": "2026-04-07T07:55:16.214186+00:00", "vendors": ["microsoft", "microsoft$PRODUCT$azure_web_apps"]}