CVE-2026-54998

Summary

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Exchange Online-affected

Weaknesses

  • CWE-863: CWE-863: Incorrect Authorization

References