cve 2026 21536

CVE-2026-21536 is a high-risk remote code execution (RCE) vulnerability in the Microsoft Devices Pricing Program, a cloud-backed service used by Microsoft and authorized channel partners to manage device pricing and incentives. Microsoft's Security Response Center (MSRC) assigned this CVE and published a public advisory with limited technical detail, including report confidence metadata. Administrators who operate or integrate with the Devices Pricing Program should treat this as a high-risk service-side RCE and take appropriate action. The tag covers discussions about the vulnerability's impact, advisory details, and recommended responses for enterprise IT and security professionals managing Microsoft services.