A vulnerability labeled as critical has been found in Microsoft Entra . The impacted element is an unknown function of the component Active Directory Handler . Executing a manipulation can lead to authentication bypass using alternate channel. The identification of this vulnerability is CVE-2026-33843 . The attack may be launched remotely. There is no exploit available. This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.