A vulnerability classified as critical was found in Microsoft Exchange Online . Affected is an unknown function. Executing a manipulation can lead to privilege escalation. This vulnerability is handled as CVE-2026-48582 . The attack can only be done within the local network. There is not any exploit available.