Entra-Id

cloud-security 2026-04-28
Entra Agent ID Administrator Role Could Hijack Any Service Principal — CVE-2026-35431
A built-in Entra ID role meant to manage AI agents could be used to take ownership of any service principal in the tenant — including Global Administrator-equivalent ones — and authenticate as it. Microsoft patched cloud-side on April 9; Silverfort published technical details April 27.
entra-id azure identity privilege-escalation ai-agents service-principal cve-2026-35431 silverfort

Entra Agent ID Administrator Role Could Hijack Any Service Principal — CVE-2026-35431