33 matches found
EUVD-2026-9888
Microsoft ACI Confidential Containers Information Disclosure Vulnerability...
EUVD-2026-9889
Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability...
CVE-2026-26122
Initialization of a resource with an insecure default in Azure Compute Gallery allows an authorized attacker to disclose information over a network...
CVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure Vulnerability
...
CVE-2026-26122
CVE-2026-26122 is a Microsoft ACI Confidential Containers information disclosure vulnerability. Per the CVSS v3.1 metrics, it has a NETWORK attack vector, LOW attack complexity, LOW privileges required, no user interaction, and a HIGH confidentiality impact (C:H; I:N; A:N) with a base score of 6....
CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
...
CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
...
Microsoft ACI Confidential Containers Information Disclosure Vulnerability
Initialization of a resource with an insecure default in Azure Compute Gallery allows an authorized attacker to disclose information over a network...
PT-2026-23572
Name of the Vulnerable Software and Affected Versions Microsoft ACI Confidential Containers affected versions not specified Description A privilege escalation issue exists in Microsoft Azure Confidential Computing containers. This allows for unauthorized access and control within the container...
CVE-2026-21522 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
...
CVE-2026-23655 Microsoft ACI Confidential Containers Information Disclosure Vulnerability
...
CVE-2026-23655 Microsoft ACI Confidential Containers Information Disclosure Vulnerability
...
CVE-2026-23655
CVE-2026-23655 : The issue involves cleartext storage of sensitive information in the Azure Compute Gallery, enabling an authorized attacker to disclose data over a network. From the provided data, the CVSS v3.1 base score is 6.5 (Medium) with Network access, Low attack complexity, Low privileges...
CVE-2025-59292
External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...
CVE-2025-59291
External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...
EUVD-2025-34360
External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...
EUVD-2025-34361
External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...
Vulnerabilities fixed in Microsoft Azure
Microsoft has fixed vulnerabilities in several Azure components. A malicious party could exploit the vulnerabilities to impersonate another user and potentially grant themselves elevated privileges, in order to gain access to sensitive data or execute arbitrary code with elevated privileges. The...
CVE-2025-59291
External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...
CVE-2025-59291
Summary: CVE-2025-59291 affects Confidential Azure Container Instances. The issue is described as external control of a file name or path, enabling an authorized attacker to elevate privileges locally. Affected product: Confidential Azure Container Instances (Azure). Root cause / vulnerability cl...