3765 matches found
CVE-2026-23655
Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network...
CVE-2026-21522
Improper neutralization of special elements used in a command 'command injection' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally...
CVE-2026-21522
Improper neutralization of special elements used in a command 'command injection' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally...
CVE-2026-21522
Improper neutralization of special elements used in a command 'command injection' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally...
CVE-2026-23655
Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network...
Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
Improper neutralization of special elements used in a command 'command injection' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally...
Microsoft ACI Confidential Containers Information Disclosure Vulnerability
Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: helm-operator, nvidia-container-toolkit, cert-manager-istio-csr, opensearch-k8s-operator, crossplane-provider-azure-managedidentity, victoriametrics-cluster, flux-operator, terraform-mcp-server, kube-state-metrics, sftpgo-plugin-pubsub, victoriametrics, consul-k8s,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: wire-go, helm-operator, nvidia-container-toolkit, velero-plugin-for-microsoft-azure, velero-plugin-for-csi, cert-manager-istio-csr, opensearch-k8s-operator, crossplane-provider-azure-managedidentity, victoriametrics-cluster, flux-operator, terraform-mcp-server,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-firehose-fips, overmind, thanos-receive-controller, tofu-controller, step-kms-plugin, go-md2man, agentbeat-fips, stampdalf, xeol-fips, longhorn-manager-fips, cilium-certgen, karma, libnvidia-container, aws-application-networking-k8s,...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-firehose-fips, thanos-receive-controller, tofu-controller, step-kms-plugin, xeol-fips, agentbeat-fips, longhorn-manager-fips, cilium-certgen, karma, libnvidia-container, aws-application-networking-k8s, sops-fips, cadvisor,...
GHSA-8JVR-VH7G-F8GX vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-firehose-fips, overmind, thanos-receive-controller, tofu-controller, step-kms-plugin, go-md2man, agentbeat-fips, stampdalf, xeol-fips, longhorn-manager-fips, cilium-certgen, karma, libnvidia-container, aws-application-networking-k8s,...
PT-2026-7414
Name of the Vulnerable Software and Affected Versions Azure Compute Gallery affected versions not specified Description An authorized attacker may be able to disclose sensitive information over a network due to the cleartext storage of that information within Azure Compute Gallery. Approximately...
Microsoft Azure Compute Gallery 命令注入漏洞
Microsoft Azure Compute Gallery is a service provided by Microsoft in the United States that manages virtual machines. There is a command injection vulnerability present in Microsoft Azure Compute Gallery. Attackers can exploit this vulnerability to gain higher privileges...
Microsoft Azure Compute Gallery 安全漏洞
Microsoft Azure Compute Gallery is a service provided by Microsoft in the United States that manages virtual machines. There are security vulnerabilities in Microsoft Azure Compute Gallery. Attackers can exploit these vulnerabilities to obtain sensitive information...
PT-2026-7405
Improper neutralization of special elements used in a command 'command injection' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally...
Op Bizarre Bazaar: New LLMjacking Campaign Targets Unprotected Models
Pillar Security Research has discovered Operation Bizarre Bazaar, a massive cyberattack campaign led by a hacker known as Hecker. Between December 2025 and January 2026, over 35,000 sessions were recorded targeting AI systems to steal compute power and resell access via silver.inc...
CVE-2026-20080
A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit th...
CVE-2026-20080
A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit th...
EUVD-2026-3662
A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit th...