CVE-2026-21536

CRITICAL

Microsoft Devices Pricing Program - RCE

Title source: llm

Description

Microsoft Devices Pricing Program Remote Code Execution Vulnerability

Exploits (2)

github SUSPICIOUS 10 stars
by XiaomingX · pythonpoc
https://github.com/XiaomingX/data-cve-poc-py-v1/tree/main/2026/CVE-2026-21536
nomisec SUSPICIOUS
by b1gchoi · poc
https://github.com/b1gchoi/CVE-2026-21536-RCE

References (1)

Scores

CVSS v3 9.8
EPSS 0.0163
EPSS Percentile 81.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-434
Status published
Products (2)
microsoft/devices_pricing_program
Microsoft/Microsoft Devices Pricing Program -
Published Mar 05, 2026
Tracked Since Mar 06, 2026