A vulnerability was found in Microsoft Entra . It has been classified as very critical . Impacted is an unknown function. This manipulation causes origin validation error. This vulnerability appears as CVE-2026-42901 . The attack may be initiated remotely. There is no available exploit. This product is a managed service, which means users themselves cannot handle vulnerability countermeasures.