AI description
CVE-2026-56155 is an elevation of privilege vulnerability found in Microsoft Active Directory Federation Services (AD FS). This flaw stems from an insufficient granularity of access control within the service. An authorized attacker can exploit this vulnerability to locally elevate their privileges. Microsoft has addressed this issue, noting that it was actively exploited in the wild as a zero-day vulnerability. Organizations are advised to apply mitigations in accordance with vendor instructions to address this vulnerability.
- Description
- Insufficient granularity of access control in Active Directory Federation Services (AD FS) allows an authorized attacker to elevate privileges locally.
- Source
- secure@microsoft.com
- NVD status
- Analyzed
- Products
- windows_10_1607, windows_10_1809, windows_server_2012, windows_server_2016, windows_server_2019, windows_server_2022, windows_server_2025
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Microsoft Active Directory Federation Services Insufficient Granularity of Access Control Vulnerability
- Exploit added on
- Jul 14, 2026
- Exploit action due
- Jul 28, 2026
- Required action
- Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- secure@microsoft.com
- CWE-1220
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
8
🚨 Microsoft Patch Tuesday (July 2026): Microsoft has patched ~570 vulnerabilities, including critical RCE flaws and three publicly disclosed issues: CVE-2026-56164, CVE-2026-56155, and CVE-2026-50661. #CyberSecurity #Microsoft #PatchTuesday #CVE #ThreatWire
@ThreatWire_
14 Jul 2026
47 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Microsoft’s July 2026 Patch Tuesday delivers fixes for approximately 570 vulnerabilities across its product ecosystem, following June’s record-breaking release of 206 flaws that also included three publicly disclosed zero-days. 📌 CVE-2026-56164 📌 CVE-2026-56155 📌 ht
@The_Cyber_News
14 Jul 2026
3901 Impressions
14 Retweets
62 Likes
11 Bookmarks
4 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "1A8DB50E-7571-4925-A293-CAB93ECD0EBF",
"versionEndExcluding": "10.0.14393.9339",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "A9DC4EC9-4E72-4CBC-BA0B-39CCC45DB8CE",
"versionEndExcluding": "10.0.14393.9339",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
"matchCriteriaId": "643F21D8-3A5B-477D-AFFC-2451DDC472CC",
"versionEndExcluding": "10.0.17763.9020",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "A68E51D8-C76C-4C9E-9CBD-C7D4D4BCDFAA",
"versionEndExcluding": "10.0.17763.9020",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"matchCriteriaId": "34D1270A-7D50-46CC-87EE-0A4E25F9C800",
"versionEndExcluding": "10.0.14393.9339",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D0E1AB94-0B38-4BB7-94EB-988EA266D6D5",
"versionEndExcluding": "10.0.17763.9020",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9E9A0C18-3AD2-4E59-97AF-A2343E466929",
"versionEndExcluding": "10.0.20348.5386",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2025:*:*:*:*:*:*:*:*",
"matchCriteriaId": "22BE2FE9-37B9-4FF2-B43A-60A3518E0F08",
"versionEndExcluding": "10.0.26100.33158",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]