Описание
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges.
Below is a complete list of vulnerabilities:
- An information disclosure vulnerability in Azure MCP Server can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Azure AI Foundry can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Microsoft Azure Kubernetes Service can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Azure Custom Locations Resource Provider (RP) can be exploited remotely to gain privileges.
- An information disclosure vulnerability in Azure SRE Agent can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Azure Databricks can be exploited remotely to gain privileges.
Первичный источник обнаружения
Эксплуатация
Связанные продукты
Список CVE
- CVE-2026-26135 critical
- CVE-2026-32173 critical
- CVE-2026-32211 critical
- CVE-2026-32213 critical
- CVE-2026-33105 critical
- CVE-2026-33107 critical
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!