{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2026-32184/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.8,"id":"CVE-2026-32184"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["HPC Pack"],"_cs_severities":["high"],"_cs_tags":["cve-2026-32184","privilege-escalation","deserialization","windows"],"_cs_type":"advisory","_cs_vendors":["Microsoft"],"content_html":"\u003cp\u003eCVE-2026-32184 is a critical vulnerability affecting Microsoft High Performance Compute Pack (HPC). An authorized attacker with local access can exploit this vulnerability to elevate their privileges on the system. The root cause lies in the insecure deserialization of untrusted data, allowing the attacker to inject malicious code during the deserialization process. The vulnerability was reported on April 14, 2026. Successful exploitation grants the attacker elevated privileges, potentially leading to full control over the HPC system. This is a significant concern for organizations utilizing Microsoft HPC Pack, as it can compromise the integrity and confidentiality of sensitive data processed on the cluster. Organizations should apply the necessary patches to mitigate this risk.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eAttacker gains authorized local access to an HPC system running Microsoft HPC Pack.\u003c/li\u003e\n\u003cli\u003eThe attacker crafts a malicious serialized object containing code designed for privilege escalation.\u003c/li\u003e\n\u003cli\u003eThe attacker injects this malicious serialized object into a data stream processed by the HPC Pack.\u003c/li\u003e\n\u003cli\u003eThe HPC Pack attempts to deserialize the untrusted data without proper validation.\u003c/li\u003e\n\u003cli\u003eDuring deserialization, the injected malicious code is executed.\u003c/li\u003e\n\u003cli\u003eThe attacker gains elevated privileges on the local system.\u003c/li\u003e\n\u003cli\u003eWith elevated privileges, the attacker can access sensitive data, modify system configurations, or install malicious software.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of CVE-2026-32184 allows a local attacker to escalate privileges on a Microsoft HPC Pack system. This can lead to complete compromise of the system, including unauthorized access to sensitive data, modification of critical system configurations, and potential deployment of malware. The impact is especially severe in environments where the HPC Pack processes sensitive research data or manages critical infrastructure. The number of affected organizations depends on the adoption rate of the HPC Pack, but any system left unpatched is vulnerable.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApply the security update provided by Microsoft for CVE-2026-32184 immediately to patch the deserialization vulnerability in Microsoft High Performance Compute Pack.\u003c/li\u003e\n\u003cli\u003eMonitor process creation events for unexpected processes launched by the HPC Pack service to detect potential exploitation attempts (see Sigma rule \u0026quot;Detect Suspicious HPC Process Creation\u0026quot;).\u003c/li\u003e\n\u003cli\u003eImplement strict access control policies to limit the number of users with authorized local access to HPC Pack systems.\u003c/li\u003e\n\u003cli\u003eAudit the configuration of the HPC pack to detect unauthorized users.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2024-01-03T12:00:00Z","date_published":"2024-01-03T12:00:00Z","id":"https://feed.craftedsignal.io/briefs/2026-04-hpc-deserialization/","summary":"CVE-2026-32184 allows an authorized local attacker to elevate privileges on a Microsoft High Performance Compute Pack (HPC) system through deserialization of untrusted data.","title":"Microsoft HPC Pack Deserialization Vulnerability (CVE-2026-32184)","url":"https://feed.craftedsignal.io/briefs/2026-04-hpc-deserialization/"}],"language":"en","title":"CraftedSignal Threat Feed - Cve-2026-32184","version":"https://jsonfeed.org/version/1.1"}