CVE-2026-26125 | Microsoft Payment Orchestrator Service missing authentication

Inserito da Angelo Barbosa | Mar 6, 2026 | CVE

A vulnerability was found in Microsoft Payment Orchestrator Service. It has been rated as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to missing authentication.

This vulnerability is traded as CVE-2026-26125. It is possible to initiate the attack remotely. There is no exploit available.

This product is a managed service, so users are unable to manage vulnerability countermeasures on their own.

CVE-2026-26125 | Microsoft Payment Orchestrator Service missing authentication

Post correlati

CVE-2024-53477 | JFinal CMS 5.1.0 ApiForm.java deserialization

CVE-2024-35842 | Linux Kernel up to 6.1.74/6.6.13/6.7.1 ASoC normal_link null pointer dereference

CVE-2025-0239 | Mozilla Firefox up to 133.x ALPN certificate validation

CVE-2025-6091 | H3C GR-3000AX V100R007L50 /routing/goform/aspForm UpdateWanParamsMulti/UpdateIpv6Params param buffer overflow