CVE-2026-32172

CVE-2026-32172 Microsoft Power Apps Remote Code Execution Vulnerability

📅 2026-04-23 17:00:00

🔴 Critical 🔥 No Microsoft MSRC Exploit Microsoft 🎯 EPSS 0.05%

Uncontrolled search path element in Microsoft Power Apps allows an unauthorized attacker to execute code over a network.

Microsoft Power Apps

Exploit

CVE-2026-32172

Microsoft MSRC

Microsoft Patch Tuesday