Microsoft Security Response Center Follow CVE-2026-48582 Microsoft Exchange Online Elevation of Privilege Vulnerability Missing authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48582 msrc.microsoft.com
