Microsoft Azure Portal Windows Admin Center Elevation of Privilege Vulnerability

A vulnerability allowing improper link resolution before file access has been identified in the Windows Admin Center extension within the Azure Portal. This issue allows an authorized attacker to locally elevate privileges. The vulnerability arises from inadequate handling of link resolution, which could be exploited to gain unauthorized access to elevated rights.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain SYSTEM privileges.

Remediation

To address this vulnerability, customers should install the latest version of the Windows Admin Center extension through the Azure Portal. There is no direct download link; instead, customers need to open the Extensions + Applications blade for their virtual machine in the Azure Portal and search for the extension named AdminCenter (Microsoft.AdminCenter.AdminCenter). From there, they can add or update the extension following the standard Azure VM extension installation process.