Microsoft - Microsoft Entra - CRITICAL - CVE-2026-24305. Azure Entra ID has a serious elevation of privilege vulnerability, allowing an attacker to gain unauthorized access to system resources. This can lead to potential exploitation, where attackers may manipulate user roles and permissions, increasing their access within the environment. It's crucial for organizations utilizing Azure Entra ID to stay informed and apply the latest security patches to mitigate this risk. For more details and updates, refer to the official vendor advisory.