Azure Compute Gallery
by Microsoft
CVEs (5)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-26122 | 0.00 | — | 0.01 | Mar 5, 2026 | Initialization of a resource with an insecure default in Azure Compute Gallery allows an authorized attacker to disclose information over a network. | ||
| CVE-2026-26124 | 0.00 | — | 0.00 | Mar 5, 2026 | '.../...//' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-23651 | 0.00 | — | 0.00 | Mar 5, 2026 | Permissive regular expression in Azure Compute Gallery allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-21522 | 0.00 | — | 0.00 | Feb 10, 2026 | Improper neutralization of special elements used in a command ('command injection') in Azure Compute Gallery allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-23655 | 0.00 | — | 0.00 | Feb 10, 2026 | Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network. |
- CVE-2026-26122Mar 5, 2026risk 0.00cvss —epss 0.01
Initialization of a resource with an insecure default in Azure Compute Gallery allows an authorized attacker to disclose information over a network.
- CVE-2026-26124Mar 5, 2026risk 0.00cvss —epss 0.00
'.../...//' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.
- CVE-2026-23651Mar 5, 2026risk 0.00cvss —epss 0.00
Permissive regular expression in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.
- CVE-2026-21522Feb 10, 2026risk 0.00cvss —epss 0.00
Improper neutralization of special elements used in a command ('command injection') in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.
- CVE-2026-23655Feb 10, 2026risk 0.00cvss —epss 0.00
Cleartext storage of sensitive information in Azure Compute Gallery allows an authorized attacker to disclose information over a network.