EUVD-2026-9889

Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability...

EUVD-2026-9888

Microsoft ACI Confidential Containers Information Disclosure Vulnerability...

CVE-2026-26122

Initialization of a resource with an insecure default in Azure Compute Gallery allows an authorized attacker to disclose information over a network...

CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

...

CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

...

Microsoft ACI Confidential Containers Information Disclosure Vulnerability

Initialization of a resource with an insecure default in Azure Compute Gallery allows an authorized attacker to disclose information over a network...

PT-2026-23572

Name of the Vulnerable Software and Affected Versions Microsoft ACI Confidential Containers affected versions not specified Description A privilege escalation issue exists in Microsoft Azure Confidential Computing containers. This allows for unauthorized access and control within the container...

CVE-2026-21522 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

...

CVE-2026-23655 Microsoft ACI Confidential Containers Information Disclosure Vulnerability

...

CVE-2025-59292

External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...

EUVD-2025-34360

External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...

EUVD-2025-34361

External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure components. A malicious party could exploit the vulnerabilities to impersonate another user and potentially grant themselves elevated privileges, in order to gain access to sensitive data or execute arbitrary code with elevated privileges. The...

CVE-2025-59291 Confidential Azure Container Instances Elevation of Privilege Vulnerability

...

CVE-2025-59291 Confidential Azure Container Instances Elevation of Privilege Vulnerability

...

CVE-2025-59291

Summary: CVE-2025-59291 affects Confidential Azure Container Instances. The issue is described as external control of a file name or path, enabling an authorized attacker to elevate privileges locally. Affected product: Confidential Azure Container Instances (Azure). Root cause / vulnerability cl...

Confidential Azure Container Instances Elevation of Privilege Vulnerability

External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...

Azure Compute Gallery Elevation of Privilege Vulnerability

External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...

KLA89270 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Monitor Agent can be exploited remotely to gain privileges. 2. An elevatio...

Coordinated disclosure of vulnerability in Azure Container Instances Service

Microsoft recently mitigated a vulnerability reported by a security researcher in the Azure Container Instances ACI that could potentially allow a user to access other customers’ information in the ACI service. Our investigation surfaced no unauthorized access to customer data. Out of an abundanc...